HP AP775A Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL-
HP AP775A - Nexus Converged Network Switch 5010 Manual
UPC - 884962062708
View all HP AP775A manuals
Add to My Manuals
Save this manual to your list of manuals |
HP AP775A manual content summary:
- HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 1
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide First Published: 07/17/2009 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part Number: OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 2
TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY We Work, Live, Play, and Learn, Cisco Store, and Flip Gift Card are service marks; and Access Registrar, Aironet, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 3
Conventions xliv Related Documentation xlv Obtaining Documentation and Submitting a Service Request xlvi Overview 1 Information About Cisco Nexus 5000 Series and Fibre Channel Switching 5 QoS 6 Virtual Port Channels 6 Serviceability 6 Switched Port Analyzer 6 Ethanalyzer 6 Cisco Nexus 5000 Series - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 4
Switch Topology 8 Fabric Extender Deployment Topology 10 Data Center I/O Consolidation Topology 11 Supported Standards 11 Configuration Fundamentals 13 Using the Command-Line Interface 15 Accessing the CLI Variables 24 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide iv OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 5
43 Configuring NTP 44 NTP CFS Distribution 45 Enabling NTP Distribution 45 Committing NTP Configuration Changes 45 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide v - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 6
Files 52 Managing Licenses 53 Licensing Terminology 53 Licensing Model 54 Licence Installation 55 Obtaining a Factory-Installed License 55 Performing a Manual Installation 56 Obtaining the License Key File 56 Installing the License Key File 56 Backing Up License Files 57 Identifying License Features - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 7
Information About VLANs 79 Understanding VLANs 79 Understanding VLAN Ranges 80 Creating, Deleting, and Modifying VLANs 81 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide vii - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 8
Native VLAN ID for Trunk Ports 104 Understanding Allowed VLANs 104 Understanding Native 802.1Q VLANs 104 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide viii OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 9
Verifying EtherChannel Configuration 122 Configuring Virtual Port Channels 123 Information About vPCs 123 vPC Overview 123 Terminology 125 vPC Terminology 125 Fabric Extender Terminology 125 Supported vPC Topologies 126 Cisco Nexus 5000 Series Switch CLI Software Configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 10
129 Configuration Parameters That Should Be Identical 130 vPC Peer Links 131 vPC Peer Link Overview 131 Manually Configured vPC Features 132 vPC Number 133 vPC Interactions with Other Features 133 vPC and LACP PVST+ 149 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide x OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 11
164 Rapid PVST+ Interoperation with 802.1s MST 165 Configuring Rapid PVST+ 165 Enabling Rapid PVST+ 165 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xi - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 12
Entering MST Configuration Mode 184 Specifying the MST Name 185 Specifying the MST Configuration Revision Number 185 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xii OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 13
Specified Interfaces 204 Configuring Spanning Tree Network Ports on Specified Interfaces 205 Enabling BPDU Guard Globally 206 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xiii - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 14
Traffic Storm Settings 224 Switch Security Features 225 Configuring Authentication, Authorization, and Accounting 227 Information About AAA 227 AAA Security Services 227 Benefits of Using AAA 228 Remote AAA Services 228 AAA Server Groups 229 Cisco Nexus 5000 Series Switch CLI Software Configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 15
Contents OL-16597-01 AAA Service Configuration Options 229 Authentication and Authorization Process for User Login 230 Prerequisites for Remote AAA 231 Information the Global RADIUS Transmission Retry Count and Timeout Interval 248 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xv - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 16
Server Monitoring 251 Configuring the Dead-Time Interval 252 Manually Monitoring RADIUS Servers or Groups 252 Verifying RADIUS Periodic TACACS+ Server Monitoring 264 Configuring the Dead-Time Interval 265 Manually Monitoring TACACS+ Servers or Groups 266 Disabling TACACS+ 266 Displaying TACACS - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 17
Access Control Lists 279 Information About ACLs 279 IP ACL Types and Applications 279 Application Order 280 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xvii - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 18
a VLAN 293 Verifying VACL Configuration 294 Displaying and Clearing VACL Statistics 294 Example Configuration for VACL 295 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xviii OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 19
System Management 297 Using Cisco Fabric Services 299 Using Cisco Fabric Services 299 Information About CFS 299 CFS Channel 303 CFS Distribution Scopes 303 CFS Merge Support 303 CFS Support for Applications 304 CFS Application Requirements 304 Enabling Switch CLI Software Configuration Guide xix - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 20
Configuration Guidelines and Limitations 325 Configuring Session Manager 326 Creating a Session 326 Configuring ACLs in a Session 326 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xx OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 21
Information About Call Home 349 Call Home Overview 349 Destination Profiles 350 Call Home Alert Groups 350 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxi - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 22
Configuration Guidelines and Limitations 379 Configuring SNMP 379 Configuring SNMP Users 379 Enforcing SNMP Message Encryption 379 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxii OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 23
395 Pre-FIP Virtual Link Instantiation 395 Information About DCBX 395 Data Center Bridging Exchange Protocol 395 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxiii - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 24
Interface 413 Associating a Virtual Fibre Channel Interface to a VSAN 414 Verifying the Virtual Interface 414 Mapping VSANs to VLANs Example Configuration 416 Quality of Service 419 Configuring QoS 421 Information About QoS 421 MQC 422 Cisco Nexus 5000 Series Switch CLI Software Configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 25
Type QoS Policies 441 Attaching the System Service Policy 442 Restoring the Default System Service Policies 442 Enabling the Jumbo MTU 444 Configuring QoS on Interfaces 445 Configuring Untagged CoS 445 Configuring Interface Service Policy 446 Configuring Priority Flow Control and Link-Level Flow - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 26
Configuring the Interface Description 469 Configuring Port Speeds 470 Autosensing 470 Configuring SD Port Frame Encapsulation 470 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxvi OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 27
Allowed Domain ID Lists 487 About CFS Distribution of Allowed Domain ID Lists 488 Enabling Distribution 488 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxvii - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 28
Load Balancing 500 NPV Traffic Management Guidelines 501 NPV Guidelines and Limitations 501 Configuring NPV 502 xxviii Cisco Nexus 5000 Series Switch CLI Software Configuration Guide OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 29
Channel Configuration Guidelines 520 About SAN Port Channel Deletion 521 Configuring Active Mode SAN Port Channel 521 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxix - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 30
Autocreation Guidelines 526 Enabling and Configuring Autocreation 527 About Manually Configured Channel Groups 527 Converting to Manually Configured Channel Groups 528 Verifying SAN Port Channel Static VSANs 539 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxx OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 31
Zone Attribute Groups 558 Clearing the Zone Server Database 559 Verifying Zone Information 559 Enhanced Zoning 560 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxxi - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 32
Set Analysis 565 Default Basic Zone Settings 566 Distributing Device Alias Services 567 Distributing Device Alias Services 567 Information About Device Aliases 567 Device Alias Features 567 Device Configuration 574 xxxii Cisco Nexus 5000 Series Switch CLI Software Configuration Guide OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 33
-01 Default Device Alias Settings 575 Configuring Fibre Channel Routing Services and Protocols 577 Configuring Fibre Channel Routing Services and Protocols 577 Information About FSPF 577 FSPF Examples 578 for a VSAN 588 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxxiii - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 34
RSCN Timer Configuration Distribution 599 Locking the Fabric 599 Committing the RSCN Timer Configuration Changes 599 xxxiv Cisco Nexus 5000 Series Switch CLI Software Configuration Guide OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 35
Configuration 614 Switch Interoperability 614 About Interop Mode 615 Configuring Interop Mode 1 617 Verifying Interoperating Status 618 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxxv - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 36
637 Configuring Port Security with Auto-Learning and CFS Distribution 637 Configuring Port Security with Auto-Learning without CFS 638 Configuring Port Security with Manual Database Configuration 638 Enabling Port Security 638 xxxvi Cisco Nexus 5000 Series Switch CLI Software Configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 37
Auto-Learning 641 Auto-Learning Device Authorization 641 Authorization Scenario 642 Port Security Manual Configuration 644 WWN Identification Guidelines 644 Adding Authorized Port Pairs 644 Port Configuring Fabric Binding 654 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xxxvii - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 38
Monitoring Ports in a VSAN 669 About Forceful Shutdown 669 Forcefully Shutting Down a Tracked Port 669 Displaying Port Tracking Information 670 Default Port Tracking Settings 670 Troubleshooting 671 xxxviii Cisco Nexus 5000 Series Switch CLI Software Configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 39
a SPAN Session 678 Displaying SPAN Information 679 Troubleshooting 681 Troubleshooting 681 Recovering a Lost Password 681 Using the support Command 689 show tech-support brief Command 691 show tech-support fc Command 693 show tech-support platform Command 695 Default Settings for Troubleshooting - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 40
Contents Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xl OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 41
feature in the Cisco Nexus 5000 Series Switch CLI Software Configuration Guide . To check for additional information about Cisco NX-OS Release types which provide greater flexibility in QoS configuration. Quality of Service, page 419 T11-complaint FCoE The FCoE 4.1(3)N1(1) implementation on - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 42
New and Changed Information for the Cisco Nexus 5000 Series Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 42 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 43
. • Audience, page xliii • Document Organization, page xliii • Document Conventions, page xliv • Related Documentation, page xlv Audience This guide is for experienced network administrators who are responsible for configuring and maintaining n5k switches. Document Organization This document is - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 44
Management, page 297 Fibre Channel over Ethernet, page 391 Quality of Service, page 419 SAN Switching, page 459 Troubleshooting, page 671 Appendix, page 699 Description Describes how to configure CFS cannot be used. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xliv OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 45
Notes contain helpful suggestions or references to material not covered in the manual. Caution Means reader be careful. In this situation, you might Cisco NX-OS Release 4.1 Cisco Nexus 5000 Series Hardware Installation Guide Cisco Nexus 5000 Series System Messages Reference Cisco Nexus 5000 Series - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 46
as a Really Simple Syndication (RSS) feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service and Cisco currently supports RSS Version 2.0. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide xlvi OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 47
of-rack switches for the data center. The Cisco Nexus 5000 Series offers high-speed Ethernet switching and supports Fibre Channel over Ethernet (FCoE) to provide data center I/O consolidation. Currently, the Cisco Nexus 5000 -16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 1 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 48
protocol, it is unacceptable to lose a single data packet. Native Fibre Channel implements a lossless service at the transport layer using a buffer-to-buffer credit system. For FCoE traffic, the Ethernet (HBA) interface. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 2 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 49
1: I/O Consolidation Cisco Nexus 5000 Series switches provide quality of service (QoS) capabilities to ensure lossless or best-effort service across the switch. For Fibre Channel traffic (FCoE) you should interfaces. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 3 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 50
1/2/4-Gigabit Fibre Channel ports. The expansion modules are field-replaceable units (FRUs) that support online insertion and removal (OIR). Refer to the Cisco Nexus 5000 Series Hardware Installation Guide for details about the optional expansion modules. Fabric Extender The Cisco Nexus 5000 Series - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 51
10-Gigabit Ethernet ports support FCoE. Each port can 5000 Series switches are designed to support high-density, high-performance Ethernet Switching Cisco Nexus 5000 Series switches support data center I/O consolidation by following features: • Cisco fabric services • N-port virtualization • VSANs - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 52
Serviceability The Cisco Nexus 5000 Series switch serviceability functions provide data for network planning and help to improve problem Ethanalyzer to troubleshoot your network services support engineer, send an e-mail message to a network operations center (NOC), and employ Cisco AutoNotify services - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 53
version 3. A full set of Management Information Bases (MIBs) is supported. Role-Based Access Control With role-based access control (RBAC), the DCNM server. For more information, see the Cisco DCNM Configuration Guides. Configuring with Cisco MDS Fabric Manager You can configure Cisco Nexus 5000 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 54
virtual devices. The Cisco Nexus 5000 Series switch does not support multiple VDCs. All switch resources are managed in the default VDC rack incorporates blade switches that support 10-Gigabit Ethernet uplinks to the Cisco Nexus 5000 Series switch. The blade switches do not support FCoE, so there is - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 55
MDS 9134 SAN switches. The server Fibre Channel ports require standard Fibre Channel HBAs. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 9 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 56
are managed on the Cisco Nexus 5000 Series switch and configuration information is downloaded using inband communication to the Fabric Extender. See the Cisco Nexus 2000 Series Fabric Extender Software Configuration Guide for an overview of the Fabric Extender and configuration details. Cisco Nexus - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 57
I/O Consolidation Topology Supported Standards Data Center configured in active-passive mode, and the server needs to support server-based failover. On the Cisco Nexus 5000 Series switch, as SAN port channels. Supported Standards The following table lists the standards supported by the Cisco Nexus - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 58
802.1p Overview Description MAC Bridges Multiple Spanning Tree Protocol Rapid Spanning Tree Protocol Link aggregation with LACP 10-Gigabit Ethernet VLAN Tagging Class of Service Tagging for Ethernet frames Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 12 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 59
I P A R T Configuration Fundamentals • Using the Command-Line Interface, page 15 • Initial Switch Configuration, page 29 • Managing Licenses, page 53 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 60
- HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 61
plugged into the console port. You can also connect to the switch with Telnet or SSH. The switch supports up to eight simultaneous Telnet and SSH connections. To connect with Telnet or SSH, you need to know ip-addr} OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 15 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 62
'10.0.13.42' (RSA) to the list of known hosts. switch Login: admin Password: password ... switch# exit Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 16 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 63
. You can also press Ctrl-Z in configuration mode as an alternative to typing end. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 17 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 64
fex flowcontrol ip ipv6 lacp link lldp logging mac no priority-flow-control service-policy shutdown snmp spanning-tree speed storm-control switchport untagged Set bandwidth informational current configuration status. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 18 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 65
are in Write current configuration xml agent Execute Zone Server commands Execute zoneset commands OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 19 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 66
mode, and a variety of protocol-specific modes. Configuration mode is the starting point for all configuration commands. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 20 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 67
system system config command system System management commands tacacs+ Enable tacacs+ telnet Enable telnet OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 21 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 68
switch# # configure ? terminal Configure the system from terminal input If you are having trouble entering a command, check the system prompt and enter the question mark (?) for a list of available entered command. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 22 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 69
the current word, while Alt-P and Alt-N completes a previously entered command. History search forwards OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 23 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 70
vsan-id switch(config-zone)# zoneset name name vsan vsan-id switch(config-zoneset)# Using CLI Variables The Cisco Nexus 5000 Series CLI parser supports the definition and use of variables in CLI commands. CLI variables can be used as follows: • Entered directly on the command line. • Passed to - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 71
following example removes a user-defined CLI session variable: switch# cli no var name testinterface OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 25 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 72
always takes precedence over any keyword in any configuration mode or submode. • Command alias support is only available on the supervisor module, not the switching modules. • Command alias the required order. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 26 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 73
by the cli var command or passed as arguments in the run-script command. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 27 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 74
-script discover scsi-target remote sleep 10 show scsi-target disk switch# run-script bootflash:test-script Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 28 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 75
the golden BIOS are programmed onto the 2 MB flash part. You cannot upgrade the golden BIOS. When you download a new pair of kickstart and system images, you also get a new BIOS image because it is included in switch. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 29 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 76
seconds that indicates a failure. The following figure shows the normal and recovery boot sequence. Figure 5: Boot Sequence Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 30 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 77
• Troubleshooting, page to Cisco.com to access the Software Download Center. To log in to Cisco.com Download Center using this URL: http://www downloads for Cisco Nexus 5000 Series switches. You see links to the download images image file. Select and download the kickstart and system software - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 78
N1.0.96.bin Step 9 Install the new images, specifying the new image names that you downloaded in the previous step. Example: switch# install all kickstart bootflash:n5000-uk9-kickstart.4.1.3.N1.0. software version. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 32 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 79
show version Cisco Nexus Operating System (NX-OS) Software TAC support: http://www.cisco.com/tac Copyright (c) 2002-2009, Cisco :32 2009 Reason: Reset by installer System version: 4.1(3)N1(0.96) Service: plugin Core Plugin, Ethernet Plugin Downgrading from a Higher Release The procedure Guide 33 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 80
. If the image files are not stored on the bootflash memory, download the files from Cisco.com: a) Log in to Cisco.com to access the Software Download Center. To log in to Cisco.com, go to the URL : switch# show version Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 34 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 81
). • The management Ethernet port (mgmt0) is connected to an external hub, switch, or router. Refer to the Cisco Nexus 5000 Series Hardware Installation Guide (for the required product) for more information. Step 2 Tip Save the host ID information for future use (for example, to enable licensed - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 82
switch's management interface. ◦ IPv4 address of the default gateway (optional). • SSH service on the switch (optional). To enable this service, select the type of SSH key (dsa/rsa/rsa1) and number of SSH key skipped. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 36 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 83
ctrl-c at anytime to skip the remaining dialogs. Would you like to enter the basic configuration dialog (yes/no): yes The setup utility guides you through the basic configuration process. Press Ctrl-C at any prompt to end the configuration process. Step 4 Enter the new password for the administrator - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 84
the default) to enable the Telnet service. Example: Enable the telnet service? (yes/no) [y]: yes Step 11 Enter yes (no is the default) to enable the SSH service. Example: Enabled SSH service? (yes/no) [n]: yes a) . Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 38 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 85
default zone distribute full Would you like to edit the configuration? (yes/no) [n]: no OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 39 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 86
ctrl-c at anytime to skip the remaining dialogs. Would you like to enter the basic configuration dialog (yes/no): yes The setup utility guides you through the basic configuration process. Accessing the Switch After the initial configuration, you can access the switch in a number of ways: • Serial - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 87
Configuring the Switch Configuring Date and Time Note This guide refers to a switch in the Cisco Nexus 5000 Series switch as switch , and it uses the switch# prompt. To daylight saving time feature, perform this task: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 41 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 88
time). By default, Cisco NX-OS does not automatically adjust for daylight saving time. You must manually configure the switch to adjust to the daylight saving time. For example, following U.S. standards (defined . Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 42 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 89
. If both these instances point to different time servers, your NTP service is more reliable. Even if the active server link is lost, time. Provide a direct NTP server association and configure a peer to ensure backup support if the active server fails. If you only configure a peer, the most Guide 43 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 90
10.10.10.9 switch(config)# ntp peer 10.10.10.1 Configuring NTP You can configure NTP using either IPv4 addresses, IPv6 addresses, or Domain Name Services (DNS) names. To configure NTP associations, perform this task: Cisco Nexus 5000 Series Switch CLI Software Configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 91
NTP fabric distribution for all Cisco Nexus 5000 Series switches in a fabric using the Cisco Fabric Services (CFS). When you perform NTP configurations, and distribution is enabled, the entire server or peer When you OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 45 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 92
the show ntp session-status command. switch# show ntp session-status last-action : Distribution Enable Result : Success Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 46 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 93
mgmt0 interface is a 10/100/1000 Ethernet port. Note Before you begin to configure the management interface manually, obtain the switch's IP address and subnet mask. Also make sure that the console cable is connected . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 47 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 94
tree from the EXEC prompt, enter the show running-config command. If the running configuration is different Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 48 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 95
changes the directory and displays the current directory: switch# cd bootflash: switch# pwd bootflash: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 49 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 96
called samplefile from the root directory to the mystorage directory: switch# move bootflash:samplefile bootflash:mystorage/samplefile Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 50 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 97
a dir command to view all files in this directory, including the recently saved Samplefile. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 51 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 98
(zips) the specified file using LZ77 coding. This example directs the output of the show tech-support command to a file (Samplefile), and then zips the file and displays the difference in the space 20971520 bytes total Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 52 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 99
, and the implemented switch. • Licensed application-A software feature that requires a license to be used. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 53 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 100
receive your license key file and installation instructions through e-mail. • License key file-A Services Package Features This package is included with the switch hardware at no additional charge. It includes all available Ethernet Cisco Nexus 5000 Series Switch CLI Software Configuration Guide - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 101
and request this service. Note If you purchased Cisco support through a Cisco reseller, contact the reseller directly. If you purchased support directly from Cisco Systems, contact Cisco Technical Support at this URL . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 55 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 102
Installation All Cisco Nexus 5000 Series licenses are factory-installed. Manual installation is not required. Obtaining the License Key File To obtain new or updated license key file in any switch, perform this task: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 56 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 103
Backing Up License Files Performing a Manual Installation Procedure Step 1 Step 2 Log into the switch through the console port. Perform the installation by entering bootflash:/Enterprise.tar Backing up license done OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 57 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 104
a Manual Installation new permanent license, you can do so without service disruption and before the evaluation license expires. Removing an evaluation license immediately triggers a grace period without service disruption. Caution Disable related features before uninstalling a - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 105
Updating Licenses Performing a Manual Installation Procedure Step 1 Step 2 purchased Cisco support through a Cisco reseller, contact the reseller directly. If you purchased support directly from Cisco Systems, contact Cisco Technical Support at this Switch CLI Software Configuration Guide 59 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 106
Performing a Manual Installation Grace Period Alerts c) Get the product authorization key (PAK) from either the claim certificate or the proof of purchase not stop for that license package. To suspend the grace period Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 60 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 107
Switches Performing a Manual Installation countdown for service representative. Note If you purchased Cisco support through a Cisco reseller, contact the reseller directly. If you purchased support directly from Cisco Systems, contact Cisco Technical Support Software Configuration Guide 61 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 108
Performing a Manual Installation Displays information for all installed license files. Step 2 switch# show license file Displays information for a information for installed licenses. Verifying the License Configuration Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 62 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 109
II PA R T LAN Switching • Configuring Ethernet Interfaces, page 65 • Configuring VLANs, page 79 • Configuring Private VLANs, page 87 • Configuring Access and Trunk Interfaces, page 101 • Configuring EtherChannels, page 111 • Configuring Virtual Port Channels, page 123 • Configuring Rapid PVST+, page - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 110
- HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 111
connected to servers or to a LAN. The Ethernet interfaces also support Fibre Channel over Ethernet (FCoE). FCoE allows the physical Ethernet link Port number within the group. The interface numbering convention is extended to support use with a Cisco Nexus 2000 Series Fabric Extender as follows: OL - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 112
and alerts the user. Unidirectional links can cause a variety of problems, including spanning tree topology loops. UDLD is a Layer 2 is shut down. Devices on both ends of the link must support UDLD in order for the protocol to successfully identify and disable unidirectional Guide 66 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 113
from Device B on the same port. UDLD detects the problem and disables the port. Figure 7: Unidirectional Link Default UDLD Configuration only on point-to-point links between network devices that support UDLD aggressive mode. If UDLD aggressive mode is enabled, when Software Configuration Guide 67 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 114
listens to the messages sent by other devices to learn about neighboring devices. The switch supports both CDP Version 1 and Version 2. Default CDP Configuration The following table shows the when traffic is stopped. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 68 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 115
same Layer 2 domain with different maximum transmission units (MTUs). A per-physical Ethernet interface MTU is not supported. Instead, the MTU is set according to the QoS classes. You modify the MTU by setting Class and OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 69 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 116
Ethernet SFP transceiver inserted into it. switch(config-if)# speed speed Sets the speed on the interface. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 70 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 117
seconds. Use the no form of the command to return to its default setting. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 71 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 118
by using the show interface debounce command. To enable or disable the debounce timer, perform this task: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 72 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 119
interface as being down on all monitoring displays. This information is communicated to other OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 73 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 120
interfaces. switch# show interface flowcontrol Displays the detailed listing of the flow control settings on all interfaces. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 74 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 121
UDLD: yes Link Debounce: yes Link Debounce Time: yes MDIX: no FEX Fabric: yes OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 75 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 122
is A serial number is ECL120901AV nominal bitrate is 10300 MBits/sec Link length supported for 50/125mm fiber is 82 m(s) Link length supported for 62.5/125mm fiber is 26 m(s) cisco id is -cisco extended id example above. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 76 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 123
changed per-physical Ethernet interface. You modify MTU by selecting maps of QoS classes. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 77 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 124
Default Physical Ethernet Settings Displaying Interface Information Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 78 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 125
for stations that do not belong to the VLAN must be forwarded through a router. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 79 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 126
VTP turned on. Understanding VLAN Ranges The Cisco Nexus 5000 Series switch supports VLAN numbers 1to 4094 in accordance with the IEEE 802.1Q standard . The switch is physically limited in the number of VLANs it can support. The hardware also shares this available range with its VSANs The following - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 127
the VLAN, you can configure the following parameters for VLANs (except the default VLAN): OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 81 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 128
to create a range of VLANs from 15 to 20: switch# configure terminal switch(config)# vlan 15-20 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 82 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 129
(config-vlan)# name accounting switch(config-vlan)# state active switch(config-vlan)# no shutdown OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 83 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 130
1 vlan 5 The following example shows the VLANs created on the switch and their status: switch# show vlan Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 84 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 131
Number of existing VLANs :2 Number of existing user VLANs :2 Number of existing extended VLANs : 0 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 85 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 132
Verifying VLAN Configuration Configuring VLANs Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 86 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 133
or community VLANs. A host on an isolated VLAN can only communicate with the associated OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 87 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 134
at the Layer 2 level. Private VLAN Ports The three types of private VLAN ports are as follows: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 88 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 135
access port. A community VLAN must not be enabled on an isolated trunk. Note Because trunks can support the VLANs that carry traffic between promiscuous, isolated, and community ports, the isolated and community port -16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 89 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 136
is not operational, the host ports (community and isolated ports) in the secondary VLAN are brought down. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 90 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 137
an isolated VLAN tag. Isolated trunk ports are intended to be connected to host servers. To support isolated private VLAN ports on a Cisco Nexus 2000 Series Fabric Extender, the Cisco Nexus 5000 Series Fabric Extender. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 91 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 138
Enabling Private VLANs You must enable private VLANs on the switch to use the private VLAN functionality. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 92 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 139
primary or secondary VLAN, the ports that are associated with the VLAN become inactive. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 93 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 140
private VLAN feature is enabled. Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 94 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 141
. The secondary VLAN {secondary-vlan-id} can be either an isolated or community VLAN. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 95 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 142
ethernet 1/4 switch(config-if)# switchport mode private-vlan promiscuous switch(config-if)# switchport private-vlan mapping 5 200 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 96 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 143
isolated and primary VLANs. Multiple isolated VLANs can be enabled by configuring multiple associations. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 97 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 144
private VLAN feature is enabled. Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 98 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 145
for the private VLAN trunk native {vlan vlan-id} trunk. The default is VLAN 1. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 99 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 146
): switch# show feature Feature Name fcsp ... interface-vlan private-vlan udld ... Instance -------1 1 1 1 State -------enabled enabled enabled disabled Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 100 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 147
VLANs over a single link and allow you to extend VLANs across the network. Note Cisco NX-OS supports only IEEE 802.1Q-type VLAN trunk encapsulation. This chapter describes the configuration of access or trunk ports . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 101 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 148
traffic of multiple VLANs over a single link and allow you to extend VLANs across an entire network. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 102 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 149
receive all the broadcast traffic for the primary VLAN in the private VLAN mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 103 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 150
, will have a very big STP topology, which can result in problems during STP convergence. When you remove VLAN1, all data traffic for supported on all the host interface ports of any attached Cisco Nexus 2000 Series Fabric Extender. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 151
. Configuring an interface as an access host port also disables EtherChannel on that interface. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 105 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 152
packets for the native VLAN plus encapsulated, tagged, packets for multiple VLANs. Note Cisco NX-OS supports only 802.1Q encapsulation. To configure a trunk port, perform this task: Procedure Step 1 Step command. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 106 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 153
VLANs {vlan-list}]} reserved for internal use by default; this group of VLANs is OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 107 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 154
switch. switch# show vlan dot1q tag native (Optional) Displays the status of tagging on the native VLANs. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 108 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 155
interfaces, including access and trunk interfaces. switch# show interface brief Displays interface configuration information. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 109 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 156
Configuring Native 802.1Q VLANs Verifying Interface Configuration Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 110 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 157
Protocol (LACP). Configuring EtherChannels with LACP requires slightly different steps than configuring static EtherChannels. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 111 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 158
Information About EtherChannels Note Cisco NX-OS does not support Port Aggregation Protocol (PAgP) for EtherChannels. An • 802.3x flow control setting • MTU The Cisco Nexus 5000 Series switch only supports system level MTU. This attribute cannot be changed on an individual port basis. • - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 159
address • Source IP address • Source and destination IP address • Destination TCP/UDP port number OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 113 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 160
LACP Overview Note You must enable the LACP feature before you can configure and use LACP functions. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 114 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 161
other ports. A port's ability to aggregate with other ports is determined by these factors: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 115 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 162
such as the port speed and the trunking state. The passive mode is useful when you do not know whether the remote system, or partner, supports LACP. Ports can form an LACP EtherChannel when they are in different LACP modes as long as the modes are compatible as in the following - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 163
that frames are not duplicated or reordered because of this redistribution. Cisco NX-OS supports only Marker Responders. LACP-Enabled and Static EtherChannels Differences The following table provides a enable LACP. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 117 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 164
channel-group (Optional) Removes the port from the channel group. The port reverts to its original configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 118 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 165
, source-destination-mac, and source-destination-port, respectively. Related Topics • Enabling LACP, page 120 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 119 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 166
EtherChannels with no associated protocol, the channel mode is always on. The default channel mode is on. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 120 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 167
LACP feature. Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 121 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 168
of the EtherChannel feature. switch# show port-channel load-balance Displays information about load-balancing using EtherChannels. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 122 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 169
5000 Series switches connected to the Fabric Extender. A vPC can provide multipathing, which allows OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 123 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 170
each vPC peer device. Note Always attach all vPC devices using EtherChannels to both vPC peer devices. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 124 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 171
-An Ethernet interface for server or host connectivity. These ports are 1-Gigabit Ethernet interfaces. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 125 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 172
non-LACP EtherChannel. For further information about the Fabric Extender, refer to the Cisco Nexus 2000 Series Fabric Extender Software Configuration Guide. Supported vPC Topologies Cisco Nexus 5000 Series Switch vPC Topology You can connect a pair of Cisco Nexus 5000 Series switches configured in - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 173
vPCs with this configuration. Note The current generation of Cisco Nexus 2000 Series Fabric Extender does not support EtherChannels on its host interfaces. Therefore a maximum of two links can be configured in an OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 127 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 174
Domain The Cisco Nexus 5000 Series switch can support up to 12 configured dual homed Fabric Extenders the vPC domain. You can also manually configure a specific system priority for the vPC domain. Note If you manually configure the system priority, you must Configuration Guide 128 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 175
you enable the vPC feature and configure the peer link on both vPC peer switches, Cisco Fabric Services (CFS) messages provide a copy of the configuration on the local vPC peer switch configuration to the STP) mode OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 129 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 176
◦ Port type setting ◦ Loop Guard ◦ Root Guard • Maximum Transmission Unit (MTU) • Quality of Service global settings ◦ System QoS policy ◦ System Network-QoS policy ◦ System Input Queuing policy ◦ System Output or peer Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 130 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 177
will be suspended. • Private VLAN configuration • All ACL configurations and parameters • Quality of service (QoS) configuration and parameters-Local parameters; global parameters must be identical • STP interface settings 16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 131 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 178
flows across the vPC peer links using the Cisco Fabric Services over Ethernet (CFSoE) protocol. All MAC addresses for when all the links in the peer link fail. Manually Configured vPC Features You must manually configure the following features to conform to the primary/secondary Guide 132 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 179
dynamic reaction to run-time changes and link failures. The vPC peer link supports 16 EtherChannel LACP interfaces. You should manually configure the system priority on the vPC peer-link switches to ensure that the . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 133 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 180
. Use the show spanning-tree command to display information about the vPC. CFSoE The Cisco Fabric Services over Ethernet (CFSoE) is a reliable state transport mechanism that you can use to synchronize the peer link. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 134 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 181
on an EtherChannel host interface (host interface vPC topology). Note Refer to the Cisco Nexus 2000 Series Fabric Extender Software Configuration Guide for information about Fabric Extender host and fabric interfaces. • A Fabric Extender can be a member of a Host Interface vPC topology or a Fabric - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 182
vpc-domain configuration mode for an existing vPC domain. (Optional) Displays brief information about each vPC domain. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 136 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 183
# copy running-config startup-config (Optional) Copies the running configuration to the startup configuration. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 137 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 184
status of those parameters that must be | interface port-channel channel-number} consistent across all vPC interfaces. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 138 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 185
host interface to configure a vPC on it that uses the Fabric Extender topology. Note See the Cisco Nexus 2000 Series Fabric Extender Software Configuration Guide for information on attaching a Fabric Extender to a Cisco Nexus 5000 Series switch. Before You Begin Ensure that you have enabled the vPC - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 186
vPC to port-channel channel-number connect to the downstream switch, and enters the interface configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 140 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 187
device: switch# configure terminal switch(config)# interface port-channel 20 switch(config-if)# vpc 5 Manually Configuring a vPC Domain MAC Address You create the vPC peer link by designating the EtherChannel that . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 141 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 188
running LACP to ensure that the vPC peer switches are the primary switches on LACP. When you manually configure the system priority, ensure that you configure the same priority value on both vPC peer switches peer link. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 142 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 189
peer switch as the primary switch for the vPC. Then, you would manually configure the role value for the vPC peer switch that you want as switch to be lower than the other vPC peer switch. vPC does not support role preemption. If the primary vPC peer switch fails, the secondary vPC Guide 143 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 190
Manually Configuring a vPC Peer Switch Role Verifying the vPC Configuration This example shows how to configure a vPC peer link: switch# configure these commands, see the Cisco Nexus 5000 Series Command Reference. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 144 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 191
-1(config)# fex 100 NX-5000-1(config-fex)# pinning max-links 1 NX-5000-1(fex)# exit OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 145 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 192
steps on its vPC peer, NX-5000-2, which is connected to the Fabric Extender NX-2000-101. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 146 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 193
fex-fabric NX-5000-1(config-if)# fex associate 100 NX-5000-1(config-if)# exit OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 147 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 194
-keepalive interval 1 second vPC peer-keepalive timeout 5 seconds vPC peer-keepalive UDP port 3200 vPC Default Settings Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 148 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 195
.1Q Trunks, page 164 • Rapid PVST+ Interoperation with Legacy 802.1D STP, page 164 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 149 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 196
of a bridge priority value, an extended system ID (IEEE 802.1t), and an STP MAC address allocation. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 150 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 197
preferred) as a multiple of 4096. Only the following values are possible: •0 • 4096 • 8192 • 12288 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 151 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 198
, initiate a BPDU transmission. A BPDU exchange results in the following: • One switch is elected as the root bridge. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 152 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 199
stations in a switched network might not be ideal. For instance, connecting higher-speed links OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 153 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 200
single instance of STP runs on each configured VLAN (if you do not manually disable STP). Each Rapid PVST+ instance on a VLAN has a single root the default settings in the 802.1D STP). Note Rapid PVST+ supports one STP instance for each VLAN. Using Rapid PVST+, STP convergence Guide 154 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 201
propagates toward the edge of the network and quickly restores connectivity after a topology change. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 155 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 202
for the switch to detect connected legacy (802.1D) bridges. The BPDU for 802.1D is version 0. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 156 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 203
the forwarding state. The handshaking process then proliferates step-by-step throughout the topology. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 157 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 204
the topology to the switch. • Disabled port-Has no role within the operation of the spanning tree. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 158 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 205
. • Disabled-The LAN port does not participate in STP and is not forwarding frames. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 159 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 206
state. A LAN port in the forwarding state performs as follows: • Forwards frames received from the attached segment. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 160 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 207
is an edge port (a port configured to be at the edge of the network). OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 161 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 208
for the port. If a designated port receives an inferior BPDU, it immediately replies with its own information. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 162 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 209
,000 100 Mbps 19 200,000 1 Gigabit Ethernet 4 20,000 10 Gigabit Ethernet 2 2,000 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 163 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 210
.1D switch and a configuration BPDU with the TCA set is received, the TC-while timer is reset. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 164 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 211
new mode. Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 165 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 212
no physical loops present in the VLAN. Spanning tree serves as a safeguard against misconfigurations and cabling errors. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 166 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 213
override the automatically calculated hello time. Note With the switch configured as the root bridge, do not manually configure the hello time, forward-delay time, and maximum-age time using the spanning-tree mst . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 167 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 214
when configuring the primary root bridge. Note With the switch configured as the root bridge, do not manually configure the hello time, forward-delay time, and maximum-age time using the spanning-tree mst hello port. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 168 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 215
configure this parameter per interface on access ports and per VLAN on trunk ports. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 169 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 216
situations, we recommend that you configure the primary root and secondary root to modify the hello time. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 170 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 217
time for a VLAN: switch# configure terminal switch(config)# spanning-tree vlan 5 max-age 36 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 171 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 218
interface ethernet 1/8 Verifying Rapid PVST+ Configurations To display Rapid PVST+ configuration information, perform one of these tasks: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 172 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 219
/3 Root FWD 2 128.131 P2p Peer(STP) veth1/1 Desg FWD 2 128.129 Edge P2p OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 173 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 220
Restarting the Protocol Verifying Rapid PVST+ Configurations Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 174 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 221
instances. This architecture provides multiple forwarding paths for data traffic, enables load balancing, and reduces the number of STP instances required to support a large number of VLANs. MST improves the fault tolerance of the network because a failure in one instance (forwarding path) does not - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 222
units (BPDUs). There is no limit to the number of MST regions in a network. Each region can support up to 65 MST instances (MSTIs). Instances are identified by any number in the range from 1 to 4094. encapsulated in Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 176 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 223
BPDU carries information for all instances, the number of BPDUs that need to be processed to support MSTIs is significantly reduced. Figure 27: MST BPDU with M-Records for MSTIs MST Configuration Information The : OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 177 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 224
encompasses the entire switched domain. The CIST is formed by the spanning tree algorithm running among switches that support the 802.1w, 802.1s, and 802.1D standards. The CIST inside an MST region is the same CST. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 178 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 225
is the only spanning tree instance that spans the whole network, only the CIST OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 179 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 226
proposal from an MST bridge with a different configuration or a Rapid PVST+ bridge. This definition allows two ports Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 180 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 227
. The block is shown as an STP dispute. Figure 30: Detecting a Unidirectional Link Failure OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 181 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 228
0 and 224, in increments of 32. Interoperability with IEEE 802.1D A switch that runs MST supports a built-in protocol migration feature that enables it to interoperate with 802.1D STP switches. If this is necessary. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 182 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 229
tree instances are stopped for the previous mode and started for the new mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 183 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 230
: • MST name • Instance-to-VLAN mapping • MST revision number • Synchronize primary and secondary VLANs in private VLANs Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 184 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 231
must have the identical MST name, VLAN-to-instance mapping, and MST revision number. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 185 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 232
1w RSTP BPDUs. There is no limit to the number of MST regions in a network, but each region can support only up to 65 MST instances. You can assign a VLAN to only one MST instance at a time. to MST instance 1. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 186 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 233
must have the identical MST name, VLAN-to-instance mapping, and MST revision number. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 187 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 234
maps all secondary VLANs to the same MSTI and their associated primary VLAN for all private VLANs. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 188 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 235
override the automatically calculated hello time. Note With the switch configured as the root bridge, do not manually configure the hello time, forward-delay time, and maximum-age time using the spanning-tree mst hello- OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 189 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 236
and blocks the other interfaces. Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 190 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 237
place into the forwarding state. A lower path cost represents higher-speed transmission as follows: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 191 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 238
of the bridge to 4096 for MSTI 5: switch# configure terminal switch(config)# spanning-tree mst 5 priority 4096 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 192 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 239
to 10 seconds: switch# configure terminal switch(config)# spanning-tree mst forward-time 10 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 193 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 240
, and change the PVST simulation setting for the entire switch while you are in interface command mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 194 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 241
PVST+ interoperation that you configured using the spanning-tree mst simulate pvst global command. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 195 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 242
detected-protocol [interface interface [interface-num | port-channel]] Purpose Restarts MST on entire switch or specified interfaces. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 196 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 243
-attempt] Revision 1 Instances configured 2 Instance Vlans mapped 0 1-12,14-41,43-4094 1 13,42 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 197 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 244
Restarting the Protocol Verifying MST Configurations Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 198 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 245
that are connected to hosts should not receive STP Bridge Protocol Data Units (BPDUs). OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 199 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 246
use Bridge Assurance to protect against certain problems that can cause bridging loops in the Assurance is supported only by Rapid PVST+ and MST. Legacy 802.1D spanning tree does not support Bridge Assurance because you must manually put the LAN interface back in service after an invalid - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 247
applicable Disable Disable Not applicable Not applicable Disable Enable Not applicable Not applicable Enable OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 201 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 248
. Note You can enable Root Guard on all spanning tree port types: normal, edge, and network ports. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 202 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 249
automatically runs on network ports. By default, spanning tree ports are normal port types. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 203 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 250
interface is connected to hosts. Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 204 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 251
configure, and enters the interface configuration mode. The interface can be a physical Ethernet port. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 205 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 252
enables BPDU Guard on the interface. • spanning-tree bpduguard disable-Unconditionally disables BPDU Guard on the interface. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 206 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 253
status and BPDU Filtering is disabled. Before You Begin Ensure that STP is configured. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 207 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 254
Ensure that STP is configured. Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 208 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 255
tree normal or network ports: switch# configure terminal switch(config)# spanning-tree loopguard default OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 209 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 256
the switch switch# show spanning-tree [options] Displays selected detailed information for the current spanning tree configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 210 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 257
You can configure MAC addresses for the switch. These addresses are static MAC addresses. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 211 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 258
value 0 disables the MAC aging. If a VLAN is not specified, the aging specification applies to all VLANs. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 212 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 259
# show mac-address-table aging-time Vlan Aging Time 1 300 13 300 42 300 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 213 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 260
Clearing Dynamic Addresses from the MAC Table Verifying the MAC Address Configuration Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 214 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 261
IGMPv1, and IGMPv3 supports IGMPv2. Although not all features of an earlier version of IGMP are supported, the features related to membership query and membership report messages are supported for all IGMP versions. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 215 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 262
.ietf.org/wg/magma/draft-ietf-magma-snoop/rfc4541.txt. IGMPv1 and IGMPv2 Both IGMPv1 and IGMPv2 support membership report suppression, which means that if two hosts on the same subnet want to receive multicast hosts. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 216 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 263
reports from a VLAN, it removes the group for the VLAN from its IGMP cache. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 217 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 264
as a static member of a multicast group. You can disable IGMP snooping either globally or for a specific VLAN. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 218 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 265
basis. The default is enabled on all VLANs. switch(config-vlan)# ip igmp snooping fast-leave Supports IGMPv2 hosts that cannot be explicitly tracked because of the host report suppression mechanism of the IGMPv2 protocol -16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 219 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 266
suppression enabled Router port detection using PIM Hellos, IGMP Queries Number of router-ports: 1 Number of groups: 1 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 220 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 267
configured on the port, traffic storm control drops the traffic until the interval ends. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 221 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 268
control level, follow these guidelines and limitations: • You can configure traffic storm control on a port-channel interface. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 222 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 269
control uses a 10-microsecond interval that can affect the operation of traffic storm control. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 223 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 270
parameters. Table 20: Default Traffic Storm Control Parameters Parameters Traffic storm control Default Disabled Threshold percentage 100 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 224 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 271
III PA R T Switch Security Features • Configuring Authentication, Authorization, and Accounting, page 227 • Configuring RADIUS, page 241 • Configuring TACACS+, page 255 • Configuring SSH and Telnet, page 269 • Configuring Access Control Lists, page 279 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 272
- HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 273
Settings, page 239 Information About AAA AAA Security Services The authentication, authorization, and accounting (AAA) features Cisco Nexus 5000 Series switches support Remote Access Dial-In User Service (RADIUS) or Terminal Access services: OL-16597-01 Cisco Nexus 5000 Series - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 274
support, that are downloaded from AAA generate reports for troubleshooting and auditing purposes. supports Services Remote AAA services provided through RADIUS and TACACS+ protocols have the following advantages over local AAA services be easily used for AAA services. • The accounting log for - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 275
AAA Service Configuration Options On Cisco Nexus for the following services: • User Telnet service configuration option. Table 21: AAA Service Configuration Commands AAA Service for the AAA services: • RADIUS services. OL-16597-01 Cisco Nexus 5000 Series Switch CLI - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 276
Table 22: AAA Authentication Methods for AAA Services AAA Service Console login authentication AAA Methods Server groups, is RADIUS, then user roles specified in the cisco-av-pair attribute are downloaded with an authentication response. If the AAA server protocol is TACACS+, then another - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 277
. • The Cisco Nexus 5000 Series switch is configured as a client of the AAA servers. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 231 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 278
, page 252 • Manually Monitoring TACACS+ Servers or Groups, page 266 Information about AAA Guidelines and Limitations The Cisco Nexus 5000 Series switches do not support all numeric usernames, whether perform this task: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 232 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 279
TACACS+ server groups as needed. To configure default login authentication methods, perform this task: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 233 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 280
. switch(config)# exit Exits configuration mode. switch# show aaa authentication (Optional) Displays the login failure message configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 234 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 281
-CHAP authentication. The default mschap enable is disabled. switch(config)# exit Exits configuration mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 235 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 282
VSAs, page 237 Configuring AAA Accounting Default Methods The Cisco Nexus 5000 Series switch supports TACACS+ and RADIUS methods for accounting. The switches report user activity to TACACS+ or servers for accounting. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 236 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 283
support their own extended attributes that are not suitable for general use. The Cisco RADIUS implementation supports vendor ID is 9, and the supported option is vendor type 1, which options are supported by the quotation marks. The following attributes are supported by the Cisco Nexus 5000 Series - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 284
accounting log contents. Verifying AAA Configuration To display AAA configuration information, perform one of the following tasks: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 238 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 285
Disabled MSCHAP authentication Disabled Default accounting method local Accounting log display length 250 KB OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 239 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 286
Specifying Switch User Roles and SMNPv3 Parameters on AAA Servers Default AAA Settings Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 240 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 287
Dial-In User Service (RADIUS) distributed authentication and network service access information. vendor network devices, each supporting RADIUS. For example, start and end of services, indicating the amount of resources (such used during the session. An Internet service provider (ISP) might use a freeware - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 288
Configuring RADIUS • Networks that support authentication profiles. Using the RADIUS -to-Point Protocol (PPP), Serial Line Internet Protocol (SLIP), or EXEC services. • Connection parameters, including the host or client IPv4 or IPv6 address, Switch CLI Software Configuration Guide 242 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 289
support their own extended attributes that are not suitable for general use. The Cisco RADIUS implementation supports Cisco vendor ID is 9, and the supported option is vendor type 1, which is VSA protocol options are supported by the Cisco Nexus switch supports the following attributes: OL- - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 290
retry count and timeout interval. • Accounting and authentication attributes. Step 5 If needed, configure periodic RADIUS server monitoring. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 244 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 291
length is 63 characters. By default, no preshared key is configured. Exits configuration mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 245 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 292
-config command to display the encrypted preshared keys. (Optional) Copies the running configuration to the startup configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 246 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 293
can configure these server groups at any time but they only take effect when you apply them to an AAA service. To configure radius server groups, perform this task: Procedure Step 1 Step 2 Step 3 Step 4 Step . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 247 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 294
retransmission count for all RADIUS servers. The default retransmission count is 1 and the range is from 0 to 5. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 248 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 295
# copy running-config startup-config (Optional) Copies the running configuration to the startup configuration. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 249 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 296
server configuration. switch# copy running-config startup-config (Optional) Copies the running configuration to the startup configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 250 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 297
)# exit Exits configuration mode. switch# show radius-server (Optional) Displays the RADIUS server configuration. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 251 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 298
mode. (Optional) Displays the RADIUS server configuration. (Optional) Copies the running configuration to the startup configuration. Manually Monitoring RADIUS Servers or Groups To manually send a test message to a RADIUS server or to a server group, perform this task: Cisco Nexus 5000 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 299
Sends a test message to a RADIUS server group to confirm availability. The following example shows how to manually send a test message to a RADIUS server: switch# test aaa server radius 10.10.1.1 user1 Ur2Gd2BH 10.1.1 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 253 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 300
Periodic server monitoring username Periodic server monitoring password Default Authentication and accounting 0 minutes 1 5 seconds 0 minutes test test Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 254 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 301
provides centralized validation of users attempting to gain access to a Cisco Nexus 5000 Series switch. TACACS+ services are maintained in a database on a TACACS+ daemon typically running on a UNIX or Windows NT . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 255 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 302
of the following responses from the TACACS+ daemon: • ACCEPT-User authentication succeeds and service begins. If the Cisco Nexus 5000 Series switch requires user authorization, authorization begins. • TACACS+ server. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 256 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 303
AAA servers. Guidelines and Limitations for TACACS+ TACACS+ has the following guidelines and limitations: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 257 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 304
Enters configuration mode. Enables TACACS+. Exits configuration mode. (Optional) Copies the running configuration to the startup configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 258 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 305
this task: Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 259 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 306
key. switch(config)# exit Exits configuration mode. switch# show tacacs-server (Optional) Displays the TACACS+ server configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 260 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 307
can configure these server groups at any time but they only take effect when you apply them to an AAA service. To configure TACACS+ server groups, perform this task: Procedure Step 1 Step 2 Step 3 Step 4 Step mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 261 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 308
@hostname , where hostname is the name of a configured RADIUS server. Note User specified logins are only supported for Telnet sessions. To specify a TACACS+ server at login, perform this task: Procedure Step 1 Step Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 262 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 309
. By default, Cisco Nexus 5000 Series switches use port 49 for all TACACS+ requests. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 263 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 310
+ server monitoring, perform this task: Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 264 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 311
interval. The minutes default value is 0 minutes. The range is from 1 to 1440 minutes. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 265 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 312
to a TACACS+ server password group to confirm availability. The following example shows how to manually issue a test message: switch# test aaa server tacacs+ 10.10.1.1 user1 Ur2Gd2BH switch startup configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 266 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 313
-diff} switch# show running-config tacacs [all] Purpose Displays the TACACS+ Cisco Fabric Services distribution status and other details. Displays the TACACS+ configuration in the running configuration. switch# . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 267 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 314
server monitoring username Periodic server monitoring password Default Disabled 0 minutes 5 seconds 0 minutes test test About Configuring TACACS+ Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 268 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 315
Series switch will interoperate with publicly and commercially available SSH clients. The user authentication mechanisms supported for SSH are RADIUS, TACACS+, and the use of locally stored user names and passwords DSA) OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 269 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 316
5000 Series switch generates an RSA key using 1024 bits. SSH supports the following public key formats: • OpenSSH • IETF Secure Shell (SECSH you delete all of the SSH keys, you cannot start the SSH services. Telnet Server The Telnet protocol enables TCP/IP connections to a host Guide 270 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 317
) Displays the user account configuration. (Optional) Copies the running configuration to the startup configuration. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 271 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 318
file filename switch(config)# exit switch# show user-account switch# copy running-config startup-config Purpose Downloads the file containing the SSH key in IETF SECSH format from a server. The server can be this task: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 272 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 319
hostname argument can be an IPv4 address, an IPv6 address, or a host name. Clearing SSH Hosts When you download a file from a server using SCP or SFTP, you establish a trusted SSH relationship with that server. To clear -16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 273 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 320
. Clearing SSH Sessions To clear SSH sessions from the Cisco Nexus 5000 Series switch, perform this task: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 274 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 321
+DQBsDQH6rZt0KR+2Da8hJD4Z XIeccWk0gS1DQUNZ300xstQsYZUtqnx1bvm5Ninn0McNinn0Mc= Step 5 Save the configuration. switch(config)# copy running-config startup-config OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 275 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 322
to a remote device. The hostname argument can be an IPv4 address, an IPv6 address, or a device name. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 276 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 323
key generated with 1024 bits RSA key bits for generation 1024 Telnet server Enabled OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 277 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 324
Default SSH Settings Configuring SSH and Telnet Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 278 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 325
, using the IP address of the site to identify it in an IP ACL. IP ACL Types and Applications The Cisco Nexus 5000 Series switch supports IPv4, IPv6, and MAC ACLs for security traffic filtering. The switch allows you to use IP ACLs as port ACLs and VLAN ACLs, as shown - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 326
Application Order Information About ACLs Table 28: Security ACL Applications Application Port ACL Supported Interfaces Types of ACLs Supported An ACL is considered a port ACL IPv4 ACLs when you apply it match. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 280 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 327
options. IPv4 ACLs support the following additional filtering Services Code Point (DSCP) value • TCP packets with the ACK, FIN, PSH, RST, SYN, or URG bit set • Established TCP connections IPv6 ACLs support Packet length Sequence Numbers The switch supports sequence numbers for rules. Every rule - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 328
one whole LOU. Any additional rules using a "gt 10" couple would not result in further LOU usage. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 282 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 329
be a whole number protocol source destination between 1 and 4294967295. The permit and deny commands support many ways of identifying traffic. For more information, see the Cisco Nexus 5000 Series Command numbers. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 283 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 330
-number argument can be a whole number between 1 and 4294967295. The permit and deny commands support many ways of identifying traffic. For more information, see the Cisco Nexus 5000 Series Command Reference task: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 284 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 331
Ethernet interface or a EtherChannel. ACLs applied to these interface types are considered port ACLs. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 285 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 332
ACL to the interface or ipv6 port traffic-filter} access-list in EtherChannel. Only inbound filtering is supported with port ACLs. You can apply one port ACL to an interface. switch# show running-config Reference. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 286 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 333
| deny} source destination protocol Creates a rule in the MAC ACL. The permit and deny options support many ways of identifying traffic. For more information, see the Cisco Nexus 5000 Series Command Reference. . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 287 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 334
sequence number, the rule is added to the end of the rules. The permit and deny commands support many ways of identifying traffic. switch(config-mac-acl)# no {sequence-number | {permit|deny} source configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 288 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 335
you specify. switch# show mac access-lists name (Optional) Displays the MAC ACL configuration. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 289 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 336
283 Verifying MAC ACL Configurations To display MAC ACL configuration information, perform one of the following tasks: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 290 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 337
an action. The switch takes the configured action on packets permitted by the VACL. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 291 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 338
applied. Note The Cisco Nexus 5000 Series switch does not support interface-level VACL statistics. For each VLAN access map that needed to monitor traffic filtered by a VACL or to help troubleshoot VLAN access-map configuration. Configuring VACLs Creating or Changing a VACL Guide 292 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 339
, but multiple vlan-list commands can be configured to cover more than 32 VLANs. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 293 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 340
number of packets that have matched each rule. Clears statistics for all VACLs or for a specific VACL. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 294 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 341
No IP ACLs exist by default. ACL rules Implicit rules apply to all ACLs. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 295 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 342
Displaying and Clearing VACL Statistics Default ACL Settings Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 296 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 343
IV PA R T System Management • Using Cisco Fabric Services, page 299 • Configuring User Accounts and RBAC, page 315 • Configuring Session Manager, page 325 • Configuring Online Diagnostics, page 329 • Configuring System Message Logging, page 335 • - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 344
- HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 345
manual configuration at each switch in the network can be a tedious and error-prone process. Cisco Fabric Services capabilities in all CFS capable switches. Cisco Nexus 5000 Series switches support CFS message distribution over Fibre Channel, IPv4 or IPv6 networks. Software Configuration Guide 299 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 346
Using Cisco Fabric Services ◦ Unrestricted uncoordinated scope: The distribution spans the entire IP network. The following features are supported for CFS distribution over Fibre Channel SANs: • Three scopes of distribution 5000 Series Switch CLI Software Configuration Guide 300 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 347
Using Cisco Fabric Services Unrestricted Uncoordinated Distributions Coordinated Distribution over Ethernet : Enabled CFS Distribution over IP CFS distribution over IP supports the following features: • Physical distribution over an entirely IP network. • CLI Software Configuration Guide 301 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 348
CFS Distribution over IP Using Cisco Fabric Services Note The switch attempts to distribute information over Fibre Channel first and then over the IP network 37: Network Example 2 with Fibre Channel and IP Connections Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 302 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 349
resides on top of the FC2 layer. CFS uses the FC2 transport services to send information to other switches. CFS uses a proprietary SW_ILS (0x77434653 applicable only within a VSAN. Note Logical scope is not supported for FCS distribution over IP. • Physical topology level ( Configuration Guide 303 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 350
for Applications Using Cisco Fabric Services CFS supports a protocol that reduces the number of merges required to one by handling the complexity of the distribution for the application (logical, physical, or both). Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 304 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 351
with CFS. Conditional services that use CFS do not appear in the output unless these services are running. switch with CFS, merge capability (if it has registered with CFS for merge support), and lastly the distribution scope. switch# show cfs application name fscm Software Configuration Guide 305 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 352
Committing Changes Using Cisco Fabric Services Application: port-security Scope : Logical locks in the network. Both the abort and commit functions are only supported from the switch from which the network lock is acquired. You can Switch CLI Software Configuration Guide 306 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 353
Using Cisco Fabric Services Clearing a Locked Session Clearing a Locked Session You can clear locks held by an application from any switch in the network CFS Regions Creating CFS Regions You can create a CFS region. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 307 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 354
Assigning Applications to CFS Regions Using Cisco Fabric Services Procedure Step 1 Step 2 Command or Action switch# configure terminal switch(config)# cfs region region-id already present in the same region." Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 308 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 355
Using Cisco Fabric Services Removing an Application from a Region The following example shows how to move an application into Region 2 that was originally assigned to over both IPv4 and IPv6 from the same switch. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 309 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 356
Enabling CFS over IPv6 Using Cisco Fabric Services Procedure Step 1 Step 2 Step 3 Command or Action switch# configure Purpose Enters configuration mode. switch(config for application data use directed unicast. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 310 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 357
Using Cisco Fabric Services Configuring IPv4 Multicast Address for CFS Configuring IPv4 Multicast Address for CFS You can configure a CFS over IP multicast address 10.1.10.100 IPv6 multicast address : ff13::e244:4754 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 311 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 358
Displaying CFS Distribution Information Using Cisco Fabric Services Displaying CFS Distribution Information The show cfs merge status name command displays the merge status for as Local. switch# show cfs peers Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 312 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 359
Using Cisco Fabric Services Displaying CFS Distribution Information Physical Fabric Switch WWN IP Address 20:00:00:05:30:00:6b:9e 10.76.100.167 [Local] 30:01:1b:c2 172.22.92.215 Total number of entries = 2 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 313 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 360
Default CFS Settings Using Cisco Fabric Services Default CFS Settings The following table lists the default settings for CFS configurations. Table 32: Default CFS MIB Quick Reference for more information on this MIB. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 314 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 361
passwords are not displayed in the configuration files. Caution The Cisco Nexus 5000 Series switch does not support all numeric usernames, whether created with TACACS+ or RADIUS, or created locally. Local users with all -16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 315 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 362
Cisco Nexus 5000 Series switch. • network-operator-Complete read access to the Cisco Nexus 5000 Series switch. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 316 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 363
configuration guidelines and limitations: • You can add up to 256 rules to a user role. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 317 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 364
role configuration. switch# copy running-config startup-config (Optional) Copies the running configuration to the startup configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 318 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 365
)# description text (Optional) Configures the role description. You can include spaces in the description. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 319 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 366
that the user can access. Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 320 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 367
-vlan)# permit vlan Specifies a range of VLANs that the role can vlan-list access. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 321 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 368
# show role feature Displays the feature list. switch# show role feature-group Displays the feature group configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 322 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 369
are accessible. VFC policy All VFCs are accessible. VETH policy All VETHs are accessible. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 323 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 370
Default User Account and RBAC Settings Configuring User Accounts and RBAC Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 324 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 371
can also save a configuration session. Configuration Guidelines and Limitations Session Manager has the following configuration guidelines and limitations: • Session Manager supports only the ACL feature. • You can create up to 32 configuration sessions. OL-16597-01 Cisco Nexus 5000 Series Switch - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 372
to the interface. name in switch# show configuration session [name] (Optional) Displays the contents of the session. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 326 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 373
Verifying Session Manager Configuration To verify Session Manager configuration information, use the following commands: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 327 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 374
status of the configuration session. switch# show configuration session summary Displays a summary of all the configuration sessions. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 328 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 375
during normal switch operation. Online Diagnostics Overview Cisco Nexus 5000 Series switches support bootup diagnostics and runtime diagnostics. Bootup diagnostics include disruptive tests and nondisruptive tests . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 329 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 376
. Fabric engine Tests the switch fabric ASICs. Fabric port Tests the ports on the switch fabric ASIC. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 330 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 377
ports. Expansion Module Diagnostics During switch bootup or reset, the bootup diagnostics include tests for the in-service expansion modules in the switch. When you insert an expansion module into a running switch, a set -16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 331 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 378
the diagnostics tests. Default GOLD Settings The following table lists the default settings for online diagnostics parameters. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 332 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 379
Default GOLD Settings Expansion Module Diagnostics Table 39: Default Online Diagnostics Parameters Parameters Bootup diagnostics level Default complete OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 333 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 380
Expansion Module Diagnostics Default GOLD Settings Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 334 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 381
unusable 1 - alert Immediate action needed 2 - critical Critical condition 3 - error Error condition 4 - warning Warning condition OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 335 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 382
to up to three syslog servers. To support the same configuration of syslog servers on all switches in a fabric, you can use the Cisco Fabric Services (CFS) to distribute the syslog server configuration (a lower number Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 336 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 383
the console logging configuration. switch# show logging monitor (Optional) Displays the monitor logging configuration. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 337 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 384
level is 5 and the file size is 4194304. Severity levels range from 0 to 7: • 0 - emergency • 1 - alert • 2 - critical • 3 - error Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 338 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 385
the severity level and time-stamp units of messages logged by modules and facilities. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 339 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 386
you do not specify a facility and severity level, the switch resets all facilities to their default levels. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 340 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 387
(config)# logging timestamp milliseconds switch(config)# exit switch# show logging timestamp Logging timestamp: Milliseconds OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 341 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 388
server: switch# configure terminal switch(config)# logging server 172.28.254.254 5 use-vrf VRFname facility local3 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 342 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 389
/syslog.pid~ Configuring syslog Server Configuration Distribution You can distribute the syslog server configuration to other switches in the network by using the Cisco Fabric Services (CFS) infrastructure. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 390
action taken. switch# copy running-config (Optional) startup-config Copies the running configuration to the startup configuration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 344 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 391
logging last number-lines Displays the last number of lines of the log file. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 345 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 392
5 Module logging Enabled at severity level 5 Facility logging Enabled; Time-stamp units Seconds syslog server logging Disabled Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 346 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 393
Default System Message Logging Settings Parameters syslog server configuration distribution Displaying and Clearing Log Files Default Disabled OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 347 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 394
Displaying and Clearing Log Files Default System Message Logging Settings Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 348 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 395
applications. You can use this feature to page a network support engineer, e-mail a Network Operations Center, or use Cisco Smart Call Home services to automatically generate a case with the Technical Assistance Center OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 349 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 396
severity at or above the message severity set in the destination profile. The following table lists supported alert groups and the default CLI command output included in Call Home messages generated for the version Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 350 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 397
-sensing elements such show logging last 1000 as temperature alarms. show module show version show tech-support platform callhome Inventory status that is provided show module whenever a unit is cold booted, or OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 351 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 398
commands only to full text and XML destination profiles. Short text destination profiles do not support additional show commands because they only allow 128 bytes of text. Related Topics • Call return to normal state. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 352 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 399
problem resolution. • Secure message transport directly from your device or through a downloadable Transport Gateway (TG) aggregation point. You can use a TG aggregation point in cases that require support Home, you need an active service contract for the device that you are configuring. - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 400
in e-mail address format. Note You can use any valid e-mail address. The address cannot contain spaces. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 354 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 401
callhome)# customer-id customer-number (Optional) Configures the customer number for this switch from the service agreement. The customer number can be up to 255 alphanumeric characters in free format. switch profile. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 355 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 402
the e-mail addresses in this destination profile. Note You cannot modify or delete the CiscoTAC-1 destination profile. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 356 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 403
Profile To associate one or more alert groups with a destination profile, perform this task: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 357 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 404
callhome user-def-cmds (Optional) Displays information about all user-defined show commands added to alert groups. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 358 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 405
for Call Home. switch# copy running-config startup-config (Optional) Saves this configuration change. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 359 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 406
configure the switch to periodically send a message with an inventory of all software services currently enabled and running on the device along with hardware inventory information. The callhome configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 360 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 407
message to all configured destinations. switch(config-callhome)# callhome test Sends a test message to all configured destinations. callhome test and callhome test inventory commands are supported. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 408
Home. Displays the startup configuration for Call Home. switch# show tech-support callhome Displays the technical support output for Call Home. Default Call Home Settings The following table in XML 4000000 format. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 362 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 409
type. XML Call Home message level. 0 (zero) Additional References Call Home Message Formats Call Home supports the following message formats: • Short Text Message Format • Common Fields for All Full Text and XML. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 363 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 410
is type@Sid@serial: • type is the product model number from backplane IDPROM. Configuring Smart Call Home Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 364 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 411
field used for contract information or other ID by any support service. Contract ID Optional /aml/ header user-configurable /contractID used for Cisco-supplied site ID or other data meaningful to alternate support service. /aml/ header/siteID Server ID If the message is generated from - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 412
unit. Contact phone number Phone number of /aml/body/sysContactPhoneNumber the person identified Configuring Smart Call Home Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 366 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 413
. The following table describes the reactive event message format for full text or XML. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 367 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 414
/fru/hwVersion FRU software version Software version(s) that is running /aml/body/fru/swVersion on the FRU. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 368 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 415
: System Notification From Router - syslog - 2007-04-25 14:19:55 GMT+00:00 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 369 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 416
www.w3.org/2003/05/soap-envelope/role/next"> http://tools.example.com/services/DDCEService http://www.example.com/appliance :Device> Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 370 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 417
restarted -Cisco IOS Software, s72033_sp Software (s72033_sp-ADVENTERPRISEK9_DBG-VM), Experimental Version 12.2(20070421:012711) OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 371 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 418
: %SYS-DFC8-5-RESTART: System restarted -Cisco DCOS Software, c6lc2 Software (c6lc2-SPDBG-VM), Experimental Version 4.0(20080421:012711) Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 372 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 419
-block:Attachment> OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 373 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 420
Sample syslog Alert Notification in XML Format Configuring Smart Call Home Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 374 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 421
these data, as needed, to managing systems. The Cisco Nexus 5000 Series switch supports the agent and MIB. To enable the SNMP agent, you must define the relationship agent Note Cisco NX-OS does not support SNMP sets for Ethernet MIBs. OL-16597-01 Cisco Nexus 5000 Series Switch - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 422
SNMP Notifications Information About SNMP The Cisco Nexus 5000 Series switch supports SNMPv1, SNMPv2c and SNMPv3. Both SNMPv1 and SNMPv2c use a community-based form of security. when the SNMP message is processed. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 376 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 423
Block Chaining (CBC) DES (DES-56) standard. SNMPv3 User-Based Security Model (USM) refers to SNMP message-level security and offers the following services: • Message integrity-Ensures that messages have not been altered or destroyed in an unauthorized manner and that data sequences have not been - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 424
centralized user management allows the SNMP agent in Cisco NX-OS to leverage the user authentication service of the AAA server. Once user authentication is verified, the SNMP PDUs are processed further. the password. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 378 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 425
Guidelines and Limitations SNMP has the following configuration guidelines and limitations: • Cisco NX-OS supports read-only access to Ethernet MIBs. Configuring SNMP Configuring SNMP Users To configure a user for OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 379 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 426
from 0 to 65535. You can configure a host receiver for SNMPv2c traps or informs in a global configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 380 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 427
host receiver. The [engineID id] engineID format is a 12-digit colon-separated hexadecimal number. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 381 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 428
CISCO-FSPF-MIB snmp-server enable traps fspf CISCO-PSM-MIB snmp-server enable traps port-security Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 382 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 429
the defined varbinds, if ifLinkUpDownTrapEnable (defined in IF-MIB) is enabled for that interface. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 383 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 430
)# snmp-server tcp-session [auth] Enables a one-time authentication for SNMP over a TCP session. Default is disabled. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 384 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 431
, vrf, or topology keywords, you configure a mapping between the context and a zero-length string. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 385 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 432
parameters. Table 53: Default SNMP Parameters Parameters license notifications Default enabled linkUp/Down notification type ietf-extended Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 386 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 433
allows various network agents and console systems to exchange network monitoring data. The Cisco NX-OS supports RMON alarms, events and logs to monitor Cisco Nexus 5000 Series switches An RMON alarm monitors them. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 387 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 434
rising threshold. RMON Events You can associate a particular event to each RMON alarm. RMON supports the following event types: • SNMP notification-Sends an SNMP risingAlarm or fallingAlarm notification when limit. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 388 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 435
SNMP notifications. Procedure Step 1 Command or Action switch# configure terminal Purpose Enters configuration mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 389 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 436
settings for RMON parameters. Table 54: Default RMON Parameters Parameters Alarms Default None configured. Events None configured. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 390 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 437
V P A R T Fibre Channel over Ethernet • Configuring FCoE, page 393 • Configuring FCoE VLANs and Virtual Interfaces, page 411 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 438
- HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 439
prevents packet loss during congestion conditions. Cisco Nexus 5000 Series switches support T11-compliant FCoE on all 10-Gigabit Ethernet interfaces. Information to an Ethernet LAN. Two versions of FIP are supported by the Cisco Nexus 5000 Series switch: OL-16597-01 Cisco Nexus - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 440
FIP Virtual Link Instantiation Cisco NX-OS Release 4.1(3)N1(1) adds support for the T11-compliant FIP on the Cisco Nexus 5000 Series the IEEE 802.1Q tag. This tag includes a field for the class of service (CoS) value used by the priority flow control (PFC). The IEEE 802.1Q Guide 394 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 441
. For flexibility, parameters are coded in a type-length-value (TLV) format. The Cisco Nexus 5000 Series switch supports two versions of DCBX: • CEE-DCBX-The Converged Enhanced Ethernet DCBX is supported on all T11-compliant Gen-2 CNAs OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 442
is supported on support the following capabilities: • FCoE-If the CNA supports Priority Flow Control (PFC)-If the adapter supports PFC, the switch sends the IEEE 802 • If the CNA does not support a DCBX capability, that capability switch provides CLI commands to manually override the results of the - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 443
then immediately reenables the interface. If an Ethernet link provides FCoE service, do not reset the physical link because this action is reset only the virtual Fibre Channel interface. Note If the CNA does not support the logical link level up/down feature, the CNA resets the physical Guide 397 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 444
topology so that the active STP path of FCoE VLANs is always over the directly connected links Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 398 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 445
. Make sure that you configure the FCoE VLAN on the directly connected links only. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 399 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 446
carries both Ethernet and FCoE traffic. 3 You must configure the UF links as spanning-tree edge ports. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 400 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 447
UF links only. 6 You must use separate FCoE VLANs for FCoE in SAN-A and SAN-B. Note All Gen-1 (pre-FIP) and Gen-2 (FIP) CNAs are supported in a directly connected topology. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 448
UF links to allow extensions for VF_Port trunking and VSAN management for the virtual Fibre Channel interfaces. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 402 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 449
VLANs for FCoE in SAN-A and SAN-B. Note A remotelyconnected topology is supported only with Gen-2 (FIP) CNAs. Licensing Requirements for FCoE On Series switches, FCoE capability is included in the Storage Protocol Services License. Before using FCoE capabilities, you must ensure the Guide 403 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 450
example shows how to disable FCoE on the switch: switch# configure terminal switch(config)# no feature fcoe Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 404 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 451
the global FC-Map: switch# configure terminal switch(config)# fcoe fcmap 0e.fc.2a OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 405 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 452
configure the advertisement interval for the fabric: switch# configure terminal switch(config)# fcoe fka-adv-period 42 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 406 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 453
or transmit. The no form of the command disables the LLDP transmit or receive. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 407 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 454
21:00:00:1b:32:0a:e7:b8 MAC addr is 00:c0:dd:0e:5f:76 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 408 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 455
frames in: 6342 Total frames received in error: 2 Total frames discarded: 2 Total TLVs unrecognized: 0 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 409 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 456
Configuring Interface LLDP Commands Verifying FCoE Configuration Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 410 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 457
416 Information About Virtual Interfaces Cisco Nexus 5000 Series switches support Fibre Channel over Ethernet (FCoE), which allows Fibre Channel or to the MAC address of a remotely connected adapter. FCoE is supported on 10-Gigabit Ethernet interfaces. The Ethernet or EtherChannel interface that - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 458
any VSAN with associated virtual Fibre Channel interfaces to a dedicated FCOE-enabled VLAN. • FCoE is not supported on private VLANs. • If the converged access switches (in the same SAN fabric or in another) VLANs. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 412 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 459
interface. switch(config)# no interface vfc vfc-id (Optional) Deletes a virtual Fibre Channel interface. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 413 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 460
4 Verifying the Virtual Interface To display configuration information about virtual interfaces, perform one of the following tasks: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 414 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 461
, 0 bytes/sec, 0 frames/sec 0 frames input, 0 bytes 0 discards, 0 errors 0 frames output, 0 bytes 0 discards, 0 errors OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 415 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 462
(config-if)# switchport mode trunk switch(config-if)# switchport trunk allowed vlan 1,200 switch(config-if)# exit Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 416 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 463
. switch(config)# vsan database switch(config-vsan)# vsan 2 interface vfc 4 switch(config-vsan)# exit OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 417 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 464
Associating a Virtual Fibre Channel Interface to a VSAN Mapping VSANs to VLANs Example Configuration Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 418 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 465
VI PA R T Quality of Service • Configuring QoS, page 421 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 466
- HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 467
how to configure quality of service (QoS) on Cisco Nexus service for Fibre Channel and Fibre Channel Over Ethernet (FCoE) traffic and best-effort service for Ethernet traffic. QoS can be configured to provide additional classes of service every packet. To properly support FCoE, Ethernet has - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 468
, but not for the service-policy which requires that you system level by using the service-policy command. You can a flow of packets. A service policy associates a policy map with MQC target. You use a service-policy to associate a policy map has an overriding service-policy configuration. The - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 469
by a qos-group value. A total of six system classes are supported. Two of the six system classes are defaults and are always present automatically classified into the FCoE system class, which provides no-drop service. This class is created automatically when the system starts up ( Guide 423 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 470
class is full. An additional parameter pfc-cos can be configured. This parameter identifies the class of service (CoS) values to assert priority flow control (PFC) when traffic for a no-drop system class policy. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 424 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 471
used by real-time applications. ◦ Precedence-Classifies traffic based on the precedence value in the type of service (ToS) field of the IP header. ◦ Protocol-Classifies traffic based on the protocol field of the . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 425 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 472
CoS value to identify the classes that require lossless service. In the switch, each system class has an 2 switch, and it does not support packet fragmentation. A maximum transmission unit configuration to network adapters that support DCBX. Note MTU is not supported in Converged Enhanced Ethernet ( - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 473
the configuration data to the adapter. If the adapter does not support the DCBX protocol or the ingress policy type-length-value (TLV field) or the packet header fields that include IP precedence, Differentiated Services Code Point (DSCP), and Layer 2 to Layer 4 parameters. Configuration Guide 427 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 474
multicast is enabled for the default drop system class, the system will use all six queues to service the multicast traffic (all six queues are given equal priority). If you define a new system priority control traffic. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 428 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 475
avoid wasting hardware resources. When configuring EtherChannels, note the following guidelines: • The service policy configured on an EtherChannel applies to all member interfaces. • The priority flow in policy maps. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 429 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 476
in a class map. You cannot add any other match criteria to a class with a match access-group defined. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 430 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 477
Classification You can classify traffic based on the class of service (CoS) in the IEEE 802.1Q header. This 3-bit field is defined in IEEE 802.1p to support QoS traffic classes. CoS is encoded in the high order 4, 5-6 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 431 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 478
# show class-map class_cos Configuring DSCP Classification You can classify traffic based on the Differentiated Services Code Point (DSCP) value in the DiffServ field of the IP header (either IPv4 )-decimal value 40 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 432 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 479
classify based on UDP port ranges, which are likely to target applications using RTP. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 433 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 480
Precedence Classification You can classify traffic based on the precedence value in the type of service (ToS) byte field of the IP header (either IPv4 or IPv6). The following network Network control precedence (7) Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 434 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 481
clns_is CLNS Intermediate System dhcp Dynamic Host Configuration (DHCP) ldp Label Distribution Protocol (LDP) OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 435 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 482
from 0 to 5. QoS group 0 is equivalent to class-default and QoS group 1 is equivalent to class-fcoe. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 436 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 483
up to four additional system classes for Ethernet traffic. The following predefined policy maps are used as default service policies: • network-qos: default-nq-policy • Input qos: default-in-policy • Input queuing: . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 437 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 484
can contain alphabetic, hyphen, or underscore characters, are case sensitive, and can be up to 40 characters. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 438 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 485
queue increases to its allocated size. The pfc-cos-value range is from 0 to 7. This option is supported only for for a ACL-based system class (which filters traffic using criteria other than cos-based matches). to 7. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 439 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 486
priority queue. Note Only one class in each policy map can have strict priority set on it. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 440 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 487
-value is from 2 to 5. There is no default value. Note The Cisco Nexus 5000 Series switch can only support a maximum of five qos-groups within this range. switch(config-pmap-c-qos)# no set (Optional) qos-group qos 2 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 441 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 488
configuration mode. switch(config-sys-qos)# Specifies the policy map to use as the service policy for the system. service-policy type There are three policy-map configuration modes: {network-qos | qos mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 442 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 489
qos switch(config-sys-qos)# service-policy type qos input default-in-policy switch(config-sys-qos)# service-policy type network-qos default-nq-policy switch(config-sys-qos)# service-policy type queuing output default-out OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 443 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 490
example shows how to configure the default Ethernet system class to support the jumbo MTU: switch(config)# policy-map type network-qos nq)# exit switch(config)# system qos switch(config-sys-qos)# service-policy type network-qos jumbo Note The system jumbomtu command defines Guide 444 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 491
configuration mode for the specified interface or port channel. Configures the untagged CoS value. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 445 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 492
Service Policy An input qos policy is a service service policy on a port channel applies to all member interfaces. switch(config-if)# service-policy Specifies the policy map to use as the service policy. switch(config-if)# service-policy Applies the policy map service-policy type qos - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 493
Flow Control Configuring Priority Flow Control and Link-Level Flow Control Cisco Nexus 5000 Series switches support priority flow control (PFC) and Link-Level Flow Control (LLC) on Ethernet interfaces. The directions. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 447 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 494
. You can clear the QoS policy statistics. Command switch# clear qos statistics Purpose Clears the policy statistics. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 448 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 495
c4 match qos-group 5 class-map type network-qos class-fcoe match qos-group 1 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 449 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 496
policy maps attached on the system qos: switch# show policy-map system Type network-qos policy-maps Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 450 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 497
-qos class-default match qos-group 0 mtu 1538 Service-policy (queuing) input: p1 policy statistics status: any) Match: qos-group 0 bandwidth percent 10 Service-policy (queuing) output: default-out-policy policy statistics statistics status : disabled Ethernet1/1 Service-policy (qos) input: p2 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 498
set qos-group 1 Class-map (qos): class-default (match-any) Match: any set qos-group 0 Service-policy (queuing) input: p1 policy statistics status: disabled Class-map (queuing): c2 (match-any) Match: Configuration Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 452 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 499
the port Pkts discarded on ingress Per-priority-pause status :0 :0 :0 :0 :0 : 0 (0) : Rx (Inactive), Tx (Inactive) OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 453 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 500
entire system matching an access control list to have the frame CoS fields rewritten to the value 5. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 454 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 501
Step 4 Attach the allocation and rewrite policy (config)# system qos to the system. (config-sys-qos)# service-policy type network-qos pmap-nq-acl (config-sys-qos)# exit QoS Example 2 This example shows how to OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 455 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 502
2 Attach the classification policy (config)# interface ethernet 1/1 to the interface Ethernet 1/1. (config-if)# service-policy type qos input pmap-qos-eth1-1 (config-if)# exit Step 3 Set up the system- -que)# exit Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 456 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 503
pmap-nq)# exit Attach the network-qos policy (config)# system qos to the system. (config-sys-qos)# service-policy type network-qos pmap-nq-bandwidth (config-sys-qos)# exit QoS Example 3 This example shows how to OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 457 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 504
QoS Example 3 Example QoS Configurations Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 458 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 505
, page 515 • Configuring and Managing VSANs, page 531 • Configuring and Managing Zones, page 543 • Distributing Device Alias Services, page 567 • Configuring Fibre Channel Routing Services and Protocols, page 577 • Managing FLOGI, Name Server, FDMI, and RSCN Databases, page 593 • Discovering SCSI - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 506
- HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 507
in the Storage Protocol Services license. Ensure that you without a Storage Protocol Services license, but these interfaces Channel interfaces are supported on optional expansion modules SAN network). The Fibre Channel interfaces support the following modes: F, NP, E, TE, and SD - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 508
Fibre Channel interfaces support only F mode, and offer a subset of the features that are supported on native Fibre Channel interfaces. The following capabilities are not supported for virtual Fibre Switch Port Modes Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 462 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 509
E ports support class 3 and class F service. An to only one N port. F ports support class 3 service. When the switch is operating in the functionality of E ports to support the following: • VSAN trunking support class 3 and class F service. OL-16597-01 Cisco Nexus 5000 Series Switch - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 510
. To be in this state, an interface must be administratively up, the interface link layer state must Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 464 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 511
initialization is in progress. Reconfigure fabric in progress The fabric is currently being reconfigured. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 465 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 512
link is isolated. Isolation due to invalid fabric reconfiguration The port is isolated due to fabric reconfiguration. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 466 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 513
Channel interface. In most cases, you do not need to modify the default configuration. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 467 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 514
State To gracefully shut down an interface, perform this task: To enable traffic flow, perform this task: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 468 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 515
be administratively configured. For a virtual Fibre Channel, only the F port mode is supported. Configuring the Interface Description Interface descriptions should help you identify the traffic or use for long. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 469 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 516
encapsulated, and you will see a new line (Encapsulation is eisl) in the show interface SD_port_interface command output. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 470 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 517
threshold events. To disable the bit error threshold for an interface, perform this task: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 471 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 518
time the registers are read. They are useful to verify situations when the data traffic is slow. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 472 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 519
level. The following figure shows an example application using NPIV. Figure 44: NPIV Example OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 473 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 520
show interface fc slot/port transceiver command display both values for Cisco supported SFPs. Verifying Interface Information The show interface command displays interface configurations. fc2/1 - 4 , fc3/2 - 3 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 474 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 521
speed 2000 ... interface fc3/5 switchport mode E ... interface fc3/5 channel-group 11 force no shutdown OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 475 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 522
Fibre Channel interface parameters. Table 64: Default Virtual Fibre Channel Interface Parameters Parameters Interface mode Default Auto Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 476 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 523
Default Fibre Channel Interface Settings Default n/a Shutdown (unless changed during initial setup) n/a n/a Default VSAN (1) n/a n/a OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 477 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 524
Default Fibre Channel Interface Settings Configuring Fibre Channel Interfaces Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 478 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 525
switches in the fabric to ensure they simultaneously restart a new principal switch selection phase. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 479 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 526
a domain ID conflict, you must manually assign domain IDs. A disruptive restart is required to apply most configuration changes, including manually assigned domain IDs. Nondisruptive domain restarts are for that VSAN. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 480 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 527
the specified VSAN. Enables domain manager fast restart in the specified range of VSANs. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 481 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 528
(config)# no fcdomain vsan vsan-id Disables the fcdomain configuration in the - vsan-id specified VSAN range. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 482 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 529
Enables the RCF filter on the specified interface vsan-id in the specified VSAN. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 483 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 530
preferred or static. By default, the configured domain ID is 0 (zero) and the configured type is preferred. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 484 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 531
ID becomes the runtime domain ID and all interfaces on that VSAN are isolated. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 485 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 532
domain ID, perform this task: Procedure Step 1 Command or Action switch# configuration terminal Purpose Enters configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 486 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 533
the list to allow switches with the domain ID range in the specified VSAN. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 487 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 534
ID list and committing it on the principal switch. Related Topics • Using Cisco Fabric Services, page 299 Enabling Distribution CFS distribution of allowed domain ID lists is disabled by default. or discard them. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 488 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 535
using the show fcdomain status command. switch# show fcdomain status CFS distribution is enabled OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 489 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 536
Enables the contiguous allocation option in the contiguous-allocation vsan vsan-id - specified VSAN range. vsan-id Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 490 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 537
(host or disk) is plugged into a port interface. Note If you connect to the switch from an AIX or HP-UX host, be sure to enable the persistent FC ID feature in the VSAN that connects these hosts. Note When FC ID. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 491 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 538
default, all added entries are static. Persistent FC IDs are configured on a per-VSAN basis. When manually configuring a persistent FC ID, follow these requirements: • Ensure that the persistent FC ID feature is use. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 492 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 539
case, the HBA port's area can be anything other than 77. The HBA port's FC ID must be manually configured to be different from the storage port's FC ID. Cisco Nexus 5000 Series switches facilitate this requirement /1 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 493 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 540
deleted Static Not in use Not deleted Dynamic In use Not deleted Dynamic Not in use Deleted Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 494 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 541
IDs that are still not in use. switch# show fcdomain fcid persistent vsan 1000 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 495 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 542
:00:28:df rcf-reject Disabled Persistent FC ID Enabled Allowed domain ID list configuration distribution Disabled Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 496 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 543
and features. In fabric mode, each switch that joins a SAN is assigned a domain ID. Each SAN (or VSAN) supports a maximum of 239 domain IDs, so the SAN has a limit of 239 switches. In a SAN topology with a devices. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 497 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 544
to the entire switch. In NPV mode, a subset of fabric mode CLI commands and functionality is supported. For example, commands related to fabric login and name server registration are not required on the edge (NP ports). Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 498 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 545
state change number (BB_SCN) of internal FLOGIs on an NP port is always set to zero. The BB_SCN is supported by the F port on the edge switch. We do not recommend using fWWN-based zoning on the edge switch zones. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 499 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 546
Management Automatic Uplink Selection NPV supports automatic selection of NP uplinks. 1a)N2(1) and later software releases, NPV supports traffic maps. A traffic map allows you to releases, NPV supports disruptive load balancing balancing is not enabled, you can manually reinitialize some or all of the - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 547
in the configuration commands. • Port tracking is not supported in NPV mode. • Port security is supported on the core switch for devices logged in through the NP uplink. • If a server interface goes down and then returns to service, the interface is not guaranteed to be assigned to the same NP uplink - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 548
is switched in the core switch. • NPV supports NPIV-capable module servers. This capability is called nested NPIV. • Only F, NP, and SD ports are supported in NPV mode. Configuring NPV Enabling NPV When switch. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 502 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 549
-balancing feature to distribute the server traffic load evenly among all the NP uplinks. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 503 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 550
: fc2/3, VSAN: 1, FCID: 0x260000, State: Up Interface: fc2/4, VSAN: 1, FCID: 0x1a0000, State: Up Number of External Interfaces: 4 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 504 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 551
disruptive load balancing is enabled External Interfaces Interface: fc2/1, VSAN: 2, FCID: 0x1c0000, State: Up ... OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 505 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 552
Verifying NPV Traffic Management Configuring N Port Virtualization Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 506 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 553
(EISL) frame format (see the following figure). Figure 48: VSAN Trunking VSAN trunking is supported on native Fibre Channel interfaces, but not on virtual Fibre Channel interfaces. The VSAN trunking feature an E port. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 507 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 554
are not affected: the TE port continues to function in trunk mode, but only supports traffic in VSANs that it negotiated with previously (when the trunking protocol was enabled). Other disable the trunking protocol. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 508 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 555
Auto, on, or off No trunking (ISL) E port Auto Auto No trunking (ISL) E port OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 509 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 556
3, and switch 3 has VSANs 1, 2, 4, and 5 with a default configuration of trunk-allowed VSANs. All VSANs configured in all Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 510 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 557
switch 3 includes VSAN 1 and VSAN 2. • The ISL between switch 3 and switch 1 includes VSAN 1, 2, and 5. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 511 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 558
-id switch(config-if)# no switchport trunk allowed Deletes the expanded allowed list. vsan add vsan-id Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 512 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 559
Allowed VSAN list Trunking protocol Default On 1 to 4093 user-defined VSAN IDs Enabled OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 513 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 560
Default Trunk Configuration Settings Configuring VSAN Trunking Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 514 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 561
bandwidth is diminished. The routing tables are not affected by link failure. Cisco Nexus 5000 Series switches support a maximum of four SAN port channels (with eight interfaces per port channel). A port channel number OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 515 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 562
. This method provides finer granularity for load balancing while preserving the order of frames for each exchange. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 516 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 563
on an interface, link 1 is chosen by a hash algorithm. All remaining frames in that OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 517 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 564
following figure provides examples of valid SAN port channel configurations. Figure 57: Valid SAN Port Channel Configurations Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 518 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 565
to reconnect the links to interfaces within the port channel and reenable the links. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 519 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 566
mode of the peer port. If the peer port, while configured in a channel group, does not support the port channel protocol, or responds with a nonnegotiable status, it will default to the On mode behavior port channel. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 520 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 567
On mode. The SAN port channel number is in the range of 1 to 256. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 521 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 568
. The check ensures that the following parameters and settings match at both ends of a SAN port channel: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 522 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 569
port channels are created from within an interface, the force option cannot be used. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 523 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 570
Channel Protocol The switch software provides robust error detection and synchronization capabilities. You can manually configure channel groups, or they can be automatically created. In both cases, the channel group. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 524 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 571
to automatically form channel groups without manual intervention. The port channel protocol is enabled by default. The port channel protocol expands the port channel functional model in Cisco SAN switches. It uses the exchange peer parameters (EPP) services to communicate across peer ports in - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 572
Channels Table 71: Channel Group Configuration Differences User-Configured Channel Group Manually configured by the user. Autocreated Channel Group Created automatically when compatible links released for reuse. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 526 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 573
port channel can be manually configured to appear the same the interface in a manually configured channel group. Tip group auto About Manually Configured Channel autocreated channel group to a manual channel group. This task is to the properties of the manually configured channel group, and channel - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 574
Configured Channel Groups Configuring SAN Port Channels Converting to Manually Configured Channel Groups You can convert autocreated channel group to a user-configured channel : 77 - 79 Unused: 1 - 76 , 80 - 256 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 528 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 575
Port Channels Autocreated SAN port channels are indicated explicitly to help differentiate them from the manually created SAN port channels. The following example shows how to display an autocreated port channel . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 529 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 576
Default Settings for SAN Port Channels Configuring SAN Port Channels Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 530 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 577
one VSAN are contained within that VSAN and are not propagated to other VSANs. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 531 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 578
or virtual Fibre Channel interfaces. A VSAN can include a mixture of Fibre Channel and virtual Fibre Channel interfaces. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 532 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 579
and high security requirements ◦ Backup traffic on separate VSANs ◦ Replicating data from user traffic OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 533 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 580
increases the scalability of the SAN. • Per VSAN fabric services-Replication of fabric services on a per VSAN basis provides increased scalability and availability are defined for a set of initiators and targets service providers). not visible outside the zone. Cisco Nexus 5000 Series - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 581
state of a VSAN indicates that the VSAN is configured and enabled. By enabling a VSAN, you activate the services for that VSAN. ◦ The suspended state of a VSAN indicates that the VSAN is configured but not enabled. If -16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 535 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 582
. You can assign VSAN membership to ports using one of two methods: • Statically-Assigning VSANs to ports. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 536 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 583
method is referred to as dynamic port VSAN membership (DPVM). Cisco Nexus 5000 Series switches do not support DPVM. VSAN trunking ports have an associated list of VSANs that are part of an allowed list. /2 fc2/3 fc2/4 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 537 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 584
is up. This state indicates that traffic can pass through this VSAN. This state cannot be configured. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 538 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 585
507 Deleting Static VSANs To delete a VSAN and its various attributes, perform this task: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 539 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 586
command entered in the suspend previous step. switch(config-vsan-db)# end Returns you to EXEC mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 540 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 587
Mode About Interop Mode Interoperability enables the products of multiple vendors to connect with each other. Fibre Channel standards guide vendors to create common external Fibre Channel interfaces. Related Topics • Switch Interoperability, page 614 Displaying Static VSAN Configuration The - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 588
Default VSAN Settings Configuring and Managing VSANs Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 542 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 589
ID field. Advanced zoning capabilities specified in the FC-GS-4 and FC-SW-3 standards are supported. You can use either the existing basic zoning capabilities or the advanced, standards-compliant zoning at any time. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 543 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 590
works with Cisco SAN switches. Interface-based zoning does not work for VSANs configured in interop mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 544 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 591
S2 in zone 3, and to H1 and S1 in zone 1. Figure 65: Fabric with Three Zones Zone Implementation Cisco Nexus 5000 Series switches automatically support the following basic zone features (no additional configuration is required): • Zones are contained in a VSAN. OL-16597-01 Cisco Nexus 5000 Series - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 592
set belongs to the default zone and the default zone information is not distributed to other switches. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 546 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 593
need to explicitly deactivate the currently active zone set before activating a new zone set. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 547 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 594
Active and Full Zone Set Configuration Guidelines Configuring and Managing Zones The following figure shows a zone being added to an activated zone set. Figure 66: Active and Full Zone Sets Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 548 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 595
Configures a zone in the specified VSAN. Note All alphanumeric characters or one of the following symbols are supported. switch(config-zone)# member Configures a member for the specified zone based on the type type value -01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 549 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 596
its own membership hierarchy and zone members. Figure 67: Hierarchy of Zone Sets, Zones, and Zone Members Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 550 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 597
in the fabric. Note The default settings for default zone configurations can be changed. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 551 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 598
switches. To specify a remote switch, enter the remote switch WWN (sWWN) or the domain ID in the particular VSAN. Tip The switch supports a maximum of 2048 aliases per VSAN. Creating FC Aliases To create an alias, perform this task: Procedure Step 1 Command or Action switch# configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 599
:de Domain ID interface example: switch(config-fcalias)# member interface fc2/1 domain-id 25 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 553 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 600
combinations to allow the frame at wire speed. Hard zoning is applied to all forms of zoning. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 554 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 601
enforces zoning restrictions on every frame, and prevents unauthorized access. Cisco Nexus 5000 Series switches support both hard and soft zoning. Zone Set Distribution You can distribute full zone sets using one . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 555 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 602
Zones Note The one-time distribution of the full zone set is supported in interop 2 and interop 3 modes, and not in interop 1 the figure below). • Export the current database to the neighboring switch. • Manually resolve the conflict by editing the full zone set, activating the corrected zone set - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 603
zone set in the vsan vsan-id specified VSAN to the full zone set. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 557 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 604
)# zone-attribute-group clone Clones a zone attribute group in the oldname newname vsan vsan-id specified VSAN. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 558 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 605
The following example shows how to display the zone status: switch# show zone status OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 559 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 606
GS-4 and FC-SW-3 standards. Both standards support the basic zoning functionalities explained in the previous section per switch basis, the the nature of the problem from troubleshooting process managing switch provides a each remote switch. CLI Software Configuration Guide 560 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 607
Cisco switches. Enhanced Zoning Advantages The fWWN-based zone Supports fWWN-based The fWWN-based member type is membership is only supported in membership in the standard interop standardized. Cisco task: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 561 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 608
the switch where the database was initially locked. switch# configuration terminal switch(config)# no zone commit vsan 2 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 562 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 609
the setting is allow, then the merge rules are used to perform the merge. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 563 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 610
Purpose Enters configuration mode. Configures permit as the default zoning policy for new VSANs on the switch. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 564 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 611
can delete excess zones and compact the zone database for the VSAN. Note A merge failure occurs when a switch supports more than 2000 zones per VSAN but its neighbor does not. Also, zone set activation can fail if the OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 565 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 612
to all members. Full zone set distribute The full zone set(s) is not distributed. Enhanced zoning Disabled. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 566 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 613
Services, page 567 Distributing Device Alias Services Switches in the Cisco Nexus 5000 Series support Distributed Device Alias Services An inaccurate device name may cause unexpected results. You can circumvent this problem if you define a user-friendly name for a pWWN and use this Guide 567 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 614
Alias Modes, page 569 • Using Cisco Fabric Services, page 299 Device Alias Requirements Device aliases have can use any zone member type to specify the end Only pWWNs are supported. devices. Configuration is contained within the zone server database and is not Configuration Guide 568 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 615
Distributing Device Alias Services Creating Device Aliases • Effective database-The database currently used by the fabric. • Pending database-Your subsequent device alias server, PSM or DPVM can automatically keep OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 569 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 616
Changing Device Alias Mode Guidelines Distributing Device Alias Services track of the device alias membership changes and enforce them accordingly. The primary benefit of device alias to operate in basic mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 570 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 617
Distributing Device Alias Services About Device Alias Distribution Viewing distributed to the switches in the fabric. The same changes would have to be performed manually on all switches in the fabric to keep the device alias database up-to-date Series Switch CLI Software Configuration Guide 571 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 618
Discarding Changes Distributing Device Alias Services Procedure Step 1 Step 2 Command or Action switch# configuration terminal switch(config)# device-alias commit Purpose mode. switch# clear device-alias session Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 572 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 619
Distributing Device Alias Services Disabling and Enabling Device Alias Distribution To display the status of the clear operation, use the show device-alias status data if they satisfy the following restrictions: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 573 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 620
Distributing Device Alias Services • Each the combined number of device entries in both databases exceeds the supported configuration limit, then the merge will fail. For example, if alias mode mismatch. Related Topics • CFS Merge Support, page 303 Verifying Device Alias Configuration To display - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 621
Distributing Device Alias Services Default Device Alias Settings Procedure Step 1 Step 2 Step 3 Step 4 Step 5 Command or Action switch# show zoneset [active] Default Enabled. Device alias mode Basic. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 575 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 622
Default Device Alias Settings Parameters Database in use Database to accept changes Device alias fabric lock state Distributing Device Alias Services Default Effective database. Pending database. Locked with the first device alias task. Cisco Nexus 5000 Series Switch CLI Software Configuration - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 623
consideration, you do not need to configure any FSPF services. FSPF automatically calculates the best path between any two Channel networks. The FSPF protocol has the following characteristics and features: • Supports multipath routing. • Bases path status on a link state protocol. Guide 577 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 624
Examples Configuring Fibre Channel Routing Services and Protocols • Uses a following figure shows this arrangement. Because switches in the Cisco Nexus 5000 Series support SAN port channels, each pair of physical links can appear to the FSPF protocol Software Configuration Guide 578 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 625
Configuring Fibre Channel Routing Services and Protocols FSPF Global Configuration failure of a link in a SAN port channel does not trigger a route change, which displays the default settings for switch responses. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 579 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 626
Configuring FSPF on a VSAN Configuring Fibre Channel Routing Services and Protocols Table 83: LSR Default Settings LSR Option Acknowledgment interval (RxmtInterval) Default 5 seconds default, perform this task: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 580 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 627
Configuring Fibre Channel Routing Services and Protocols Enabling or Disabling FSPF Procedure Step 1 Step 2 Command or Action switch# configuration terminal Purpose Enters is 1000 and for 2 Gbps is 500. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 581 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 628
Configuring FSPF Link Cost Configuring Fibre Channel Routing Services and Protocols Configuring FSPF Link Cost To configure FSPF link cost, perform this task: Procedure Step 1 Step range from 1 to 65,535 seconds. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 582 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 629
Configuring Fibre Channel Routing Services and Protocols Configuring Dead Time Intervals Note This value must be the same in the ports at both ends configured, enters configuration mode for the specified interface. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 583 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 630
About Disabling FSPF for Specific Interfaces Configuring Fibre Channel Routing Services and Protocols Step 3 Command or Action switch(config-if)# fspf retransmit-interval value vsan interface in the specified VSAN. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 584 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 631
Configuring Fibre Channel Routing Services and Protocols FSPF Routes FSPF Routes FSPF routes traffic across the fabric, based on entries in the FSPF database. These option is not specified, the default is direct. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 585 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 632
Order Delivery Configuring Fibre Channel Routing Services and Protocols Step 5 Step 6 order in which they were received. Use IOD only if your environment cannot support out-of-order frame delivery. If you enable the in-order delivery feature Switch CLI Software Configuration Guide 586 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 633
Configuring Fibre Channel Routing Services and Protocols About Reordering SAN Port Channel Frames • Frames in the network are delivered in the order in which they are that could potentially be forwarded out-of-order. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 587 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 634
Enabling In-Order Delivery Globally Configuring Fibre Channel Routing Services and Protocols Enabling In-Order Delivery Globally To ensure that the in-order delivery parameters delivery feature in the specified VSAN. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 588 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 635
Configuring Fibre Channel Routing Services and Protocols Displaying the In-Order Delivery Status Displaying the In-Order Delivery Status Use the show in-order milliseconds vsan 460 network latency:500 milliseconds OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 589 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 636
Flow Statistics Configuration Configuring Fibre Channel Routing Services and Protocols Flow Statistics Configuration Flow statistics count the ingress traffic in the aggregated statistics . index value vsan vsan-id Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 590 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 637
Configuring Fibre Channel Routing Services and Protocols Clearing FIB Statistics Clearing FIB Statistics Use the clear fcflow stats command to clear the (LSRefreshTime) 30 minutes. Maximum age (MaxAge) 60 minutes. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 591 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 638
Drop latency Static route cost Remote destination switch Multicast routing Configuring Fibre Channel Routing Services and Protocols Default 20 seconds. 80 seconds. Derived from the principal switch ( multicast tree. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 592 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 639
how to verify the storage devices associated with VSAN 1: switch# show flogi database vsan 1 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 593 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 640
first device's entry in the name server database with the new device having the same pWWN (default). Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 594 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 641
statistics for all VSANs: switch# show fcns statistics FDMI Cisco Nexus 5000 Series switches provide support for the Fabric-Device Management Interface (FDMI) functionality, as described in the FC-GS-4 versions OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 595 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 642
detail vsan 1 RSCN The Registered State Change Notification (RSCN) is a Fibre Channel service that informs hosts about changes in the fabric. Hosts can receive this information by registering to receive RSCNs. D1, Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 596 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 643
in this case, both D1 and D2). Note Some Nx ports may not support multi-pid RSCN payloads. If so, disable the RSCN multi-pid option. SW-RSCN to determine what changed. Domain format SW-RSCNs can cause problems with some non-Cisco SAN switches. To suppress the transmission of these Guide 597 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 644
the RSCN statistics for VSAN 10: switch# show rscn event-tov vsan 10 Event TOV : 1000 ms Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 598 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 645
for each switch is configured manually, a misconfiguration occurs when different also reduces the number of SW-RSCNs. RSCN supports two modes, distributed and nondistributed. In distributed switchover. Related Topics • Using Cisco Fabric Services, page 299 Enabling RSCN Timer Configuration Guide 599 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 646
how to display the set of configuration commands that would take effect when you commit the configuration: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 600 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 647
timer value RSCN timer configuration distribution Default 2000 milliseconds for Fibre Channel VSANs Disabled OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 601 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 648
Default RSCN Settings Managing FLOGI, Name Server, FDMI, and RSCN Databases Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 602 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 649
are discovered. Starting SCSI LUN Discovery To start SCSI LUN discovery, perform this task: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 603 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 650
LUN Information Use the show scsi-targetand show fcns databasecommands to display the results of the discovery. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 604 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 651
each operating system (Windows, AIX, Solaris, Linux, or HPUX): switch# show scsi-target pwwn OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 605 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 652
Displaying SCSI LUN Information Discovering SCSI Targets Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 606 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 653
Channel protocol-related timer values for the switch by configuring the following timeout values (TOVs): • Distributed services TOV (D_S_TOV)-The valid range is from 5,000 to 10,000 milliseconds. The default is 5,000 . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 607 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 654
this configuration is not propagated to other switches, please configure the same value in all the switches Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 608 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 655
to store or commit the commands based on your configuration. Related Topics • Using Cisco Fabric Services, page 299 Enabling or Disabling fctimer Distribution To enable or disable fctimer fabric distribution, perform . OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 609 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 656
The merge protocol is not implemented for distribution of the fctimer values. You must manually merge the fctimer values when a fabric is merged. ◦ The per-VSAN fctimer . Related Topics • CFS Merge Support, page 303 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 610 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 657
switch selection and the allocation of domain IDs rely on the WWN. Cisco Nexus 5000 Series switches support three network address authority (NAA) address formats. (see the following table). Table 86: Standardized NAA 16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 611 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 658
. To conserve the number of FC IDs used, Cisco Nexus 5000 Series switches use a special allocation scheme. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 612 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 659
of company IDs shipped with a relevant release. To allocate company IDs, perform this task: OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 613 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 660
the show fcid-allocation company-id-from-wwn command. Some WWN formats do not support company IDs. In these cases, you many need to configure the FC ID persistent vendors to interwork with each other. Fibre Channel standards guide vendors towards common external Fibre Channel interfaces. Not all - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 661
interoperability for Cisco Nexus 5000 Series switches, see the Cisco MDS 9000 Family Switch-to-Switch Interoperability Configuration Guide About Interop Mode Cisco NX-OS software supports the following four interop modes: • Mode 1- Standards-based interop mode that requires all other vendors in the - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 662
Changes if Interoperability Is Enabled Verify that the Distributed Services Time Out Value timers match exactly. Verify that Resource Allocation Time Out Value timers match exactly. Trunking is not supported between two different vendor's switches. This feature may be disabled Guide 616 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 663
. Change the Fibre Channel timers (if they have been changed from the system defaults). OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 617 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 664
the software version. Example: switch# show version Cisco Nexus Operating System (NX-OS) Software TAC support: http://www.cisco.com/tac Copyright (c) 2002-2008, Cisco Systems, Inc. All rights reserved. /gpl.html. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 618 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 665
Nov 26 18:12:23 2008 Reason: Reset Requested by CLI command reload System version: 4.0(1a)N1(1) Service: plugin Core Plugin, Ethernet Plugin Step 2 Verify if the interface states are as required by your no shutdown OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 619 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 666
:yes verify mode loadbalancing:src-id/dst-id/oxid operational state:up Step 5 Verify the domain ID. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 620 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 667
:51:1f [Local] 0x65(101) 10:00:00:60:69:22:32:91 [Principal] OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 621 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 668
Cisco switch name server shows both local and remote entries, and does not time out the entries. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 622 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 669
10 frames FC ID allocation mode Auto mode Loop monitoring Disabled Interop mode Disabled OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 623 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 670
Default Settings for Advanced Features Advanced Fibre Channel Features and Concepts Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 624 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 671
could accidentally do so, resulting in Inter-Switch Link (ISL) isolation and link disruption. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 625 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 672
DHCHAP Configuring FC-SP and DHCHAP Cisco Nexus 5000 Series switches support authentication features to address physical security (see the following figure). Figure 74: Switch and used interchangeably in this chapter. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 626 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 673
Channel Features DHCHAP is a mandatory password-based, key-exchange authentication protocol that supports both switch-to-switch and host-to-switch authentication. DHCHAP negotiates hash algorithms and this switch. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 627 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 674
the connecting device initiates DHCHAP authentication. • Off-The switch does not support DHCHAP authentication. Authentication messages sent to ports in this mode return error terminal Enters configuration mode. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 628 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 675
the same as setting it to zero (0). About the DHCHAP Hash Algorithm Cisco SAN switches support a default hash algorithm priority list of MD5 followed by SHA-1 for DHCHAP authentication. If you configuration mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 629 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 676
followed by the SHA-1 hash algorithm. About the DHCHAP Group Settings All Cisco Nexus 5000 Series switches support all DHCHAP groups specified in the standard: 0 (null DH group, which does not perform the Diffie user. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 630 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 677
password entry for this switch from switch-wwn password password the local authentication database. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 631 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 678
the ASCII representation of the device WWN to configure the switch information on RADIUS and TACACS+ servers. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 632 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 679
protocol security information configured in this switch by displaying the DHCHAP local password database. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 633 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 680
authentication mode Auto-passive DHCHAP group default priority exchange order 0, 4, 1, 2, and 3, respectively DHCHAP timeout value 30 seconds Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 634 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 681
these intrusions to the administrator. Note Port security is supported on virtual Fibre Channel ports and physical Fibre Channel a SAN can attach to any SAN switch port and access SAN services based on zone membership. Port security features prevent unauthorized access to Configuration Guide 635 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 682
database to enforce authorization. About Auto-Learning You can instruct the switch to automatically learn (auto-learn) the port activate the port security feature for the first time as it saves tedious manual configuration for each port. You must configure auto-learning on a per Guide 636 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 683
-Learning, page 641 • Enabling Port Security, page 638 • Enabling Port Security Distribution, page 645 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 637 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 684
page 641 • Enabling Port Security, page 638 Configuring Port Security with Manual Database Configuration To configure port security and manually configure the port security database, perform this task: Procedure Step 1 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 638 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 685
Activation If the port security activation request is rejected, you can force the activation. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 639 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 686
Activates the port security database for the vsan vsan-id specified VSAN, and automatically enables auto-learning. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 640 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 687
-Learning Device Authorization The following table summarizes the authorized connection conditions for device requests. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 641 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 688
92: Authorization Results for Scenario Device Connection Request P1, N2, F1 Authorization Permitted Condition 1 Reason No conflict. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 642 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 689
with F4. No conflict. Wildcard ( * ) match for F3 and N3. Wildcard ( * ) match for N3. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 643 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 690
the port security database. Verify your configuration. WWN Identification Guidelines If you decide to manually configure port security, note the following guidelines: • Identify switch ports by the interface or task: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 644 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 691
and enforce the port security policies throughout the fabric. Related Topics • Using Cisco Fabric Services, page 299 Enabling Port Security Distribution All the configurations performed in distributed mode are stored OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 645 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 692
. switch(config)# port-security commit vsan Commits the port security changes in the vsan-id specified VSAN. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 646 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 693
= {A,B} active database = {null} pending database = {A,B, E + activation to be enabled} 3 The * (asterisk) indicates learned entries. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 647 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 694
will fail. The next distribution will forcefully synchronize the databases and the activation states in the fabric. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 648 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 695
Configuring Port Security Database Interaction Related Topics • CFS Merge Support, page 303 Database Interaction The following table lists the differences and interaction between the active configuration database. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 649 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 696
database and the configuration database status based on port security configurations. Figure 76: Port Security Database Scenarios Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 650 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 697
, learned entries are only local to the switch and do not participate in distribution. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 651 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 698
enabled. Port security Disabled. Distribution Disabled. Note Enabling distribution enables it on all VSANs in the switch. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 652 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 699
the fabric. Licensing Requirements for Fabric Binding Fabric Binding requires the Storage Protocol Services license. Port Security Versus Fabric Binding Port security and fabric binding are two number, connects OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 653 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 700
learning mode is enabled. Cannot be distributed by CFS and must be configured Can be distributed by CFS. manually on each switch in the fabric. Port-level checking for xE ports is as follows: • The switch this task: Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 654 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 701
this task: Procedure Step 1 Command or Action switch# configuration terminal Purpose Enters configuration mode. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 655 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 702
(config)# no fabric-binding activate Deactivates the fabric binding database for the vsan vsan-id specified VSAN. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 656 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 703
from the fabric binding database for a specified VSAN. switch# clear fabric-binding statistics vsan 1 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 657 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 704
ID mismatch. The following example displays EFMD Statistics for VSAN 4: switch# show fabric-binding efmd statistics vsan 4 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 658 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 705
fabric binding feature. Table 97: Default Fabric Binding Settings Parameters Fabric binding Default Disabled OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 659 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 706
Default Fabric Binding Settings Configuring Fabric Binding Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 660 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 707
, a fabric may consist of multiple VSANs. One instance of the FCS is present per VSAN. FCS supports the discovery of virtual devices. The fcs virtual-device-add command, entered in FCS configuration submode, allows is OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 661 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 708
the FCS management information base (MIB) to start discovery and obtain information about the fabric topology. • Support TE ports in addition to the standard F and E ports. • Can maintain a group of nodes in the fabric. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 662 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 709
Settings Parameters Global checking of the platform name Platform node type Default Disabled Unknown OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 663 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 710
Default FCS Settings Configuring Fabric Configuration Servers Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 664 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 711
such as the timeout values (TOVs) and on registered state change notification (RSCN) information. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 665 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 712
switch. • Be aware that the linked port is automatically brought down when the tracked port goes down. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 666 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 713
that is fc slot/port | san-port-channel port currently applied to the interface. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 667 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 714
this feature, the linked port is up only when the VSAN is up on the tracked port. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 668 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 715
state forces the traffic to flow through the redundant path until the primary tracked port problems are resolved. When the problems are resolved and the tracked port is back up, you can explicitly enable the interface OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 669 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 716
99: Default Port Tracking Parameters Parameters Port tracking Default Disabled Operational binding Enabled along with port tracking Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 670 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 717
VIII P A R T Troubleshooting • Configuring SPAN, page 673 • Troubleshooting, page 681 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 718
- HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 719
called a monitored port, is a switched interface that you monitor for network traffic analysis. The switch supports any number of ingress source ports (up to the maximum number of available ports on the switch sessions. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 673 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 720
, all active ports in the source VLAN or VSAN are included as source ports. • The switch supports a maximum of two egress SPAN source ports. SPAN Destinations SPAN destinations refer to the interfaces that monitors . Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 674 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 721
interface ethernet slot/port Enters the monitor configuration mode. Configures the Ethernet destination port. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 675 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 722
ports for a SPAN session. The source ports can be Ethernet, Fibre Channel, or virtual Fibre Channel ports. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 676 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 723
Session You can provide a descriptive name of the SPAN session for ease of reference. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 677 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 724
a SPAN session: switch(config)# monitor session 3 shut Note The Cisco Nexus 5000 Series switch supports two active SPAN sessions. When you configure more than two SPAN sessions, the first two sessions shut command. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 678 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 725
: fc3/1 tx : fc3/1 both : fc3/1 source VLANs : rx : source VSANs : rx :1 destination ports : Eth3/1 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 679 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 726
Displaying SPAN Information Configuring SPAN Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 680 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 727
51 C H A P T E R Troubleshooting • Troubleshooting, page 681 Troubleshooting Recovering a Lost Password This section describes how to recover a lost network administrator password using network-admin privileges. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 681 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 728
Power Cycling the Switch Troubleshooting Step 3 Example: switch# configure terminal switch(config)# username admin password switch(config)# exit Save the to locate the Cisco NX-OS software image file. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 682 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 729
a command-line version of Wireshark that captures and decodes packets. You can use Ethanalyzer to troubleshoot your network and analyze the control-plane traffic. To configure Ethanalyzer, use one or more of capture. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 683 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 730
Using Ethanalyzer Troubleshooting Step 4 Step 5 Step 6 Step 7 Step 8 Command or Action switch# ethanalyzer local interface interface limit-frame-size switch [ACK] Seq=0 Ack=99 Win=64049 Len=0 4 packets captured Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 684 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 731
Troubleshooting Using Ethanalyzer This example 24.42) Version: 4 Header length: 20 bytes Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00) 0000 00.. = Differentiated Services Codepoint: Default (0x00) .... ..0. = ECN-Capable Transport Switch CLI Software Configuration Guide 685 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 732
Fibre Channel Troubleshooting Troubleshooting Fibre Channel fctrace The fctrace feature provides the following capabilities: • Trace the route followed by data traffic. • Compute 20:00:00:05:30:00:18:db(0xfffcd7) Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 686 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 733
Troubleshooting fcping fcping This example shows invoking fctrace using the device alias of the destination N port. switch# fctrace device-alias disk1 received, 0 timeouts Round-trip min/avg/max = 340/581/1345 usec OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 687 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 734
Verifying Switch Connectivity Troubleshooting This example shows invoking fcping for the specified device alias of the destination: switch# fcping device-alias switch by checking its end-to-end connectivity. Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 688 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 735
troubleshooting purposes. The output of this command can be provided to technical support representatives when reporting a problem. The show tech-support command to 0 (zero) to disable auto-scrolling and enable manual scrolling. Use the show terminal command to view the configured Guide 689 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 736
topology • show kernel internal aipc • show tech-support acl • show vlan • show vlan access-map • show mac-address-table • show spanning-tree summary • show spanning-tree active • show interface trunk Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 690 Troubleshooting OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 737
• show logging onboard obfl-logs show tech-support brief Command Use the show tech-support brief command to obtain a quick, condensed review the switch for troubleshooting purposes. The output of this command can be provided to technical support representatives when reporting a problem. You can - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 738
show tech-support brief Command Troubleshooting This example shows how to display a condensed view of the switch configurations: switch# show tech-support brief Switch Interface Status IP Address Speed MTU Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 692 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 739
Troubleshooting show tech-support fc Command mgmt0 up 172.16.24.47 100 1500 show tech-support fc Command Use the show tech-support fc command to obtain information about the FC configuration on your switch. The output of the show tech-support Switch CLI Software Configuration Guide 693 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 740
1-4093 • show rscn session status vsan 1-4093 • show vsan • show vsan membership • show tech-support zone • show zone status vsan 1-4093 • show zoneset active vsan 1-4093 • show zoneset vsan 1-4093 4093 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 694 Troubleshooting OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 741
Troubleshooting show tech-support platform Command • show zone analysis vsan 1-4093 • show zone ess vsan 1-4093 • show zone internal vsan 1-4093 • show zone internal stm-stats • show platform fwm info pc all verbose OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 695 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 742
show tech-support platform Command • show platform fwm info ppf • show platform fwm info pss all • show platform hardware fwm info • show system internal liod time_db • show system internal rib domain Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 696 Troubleshooting OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 743
altos counters interrupts all • show platform hardware altos interrupts all detail Default Settings for Troubleshooting Features The following table lists the default settings for the features included in this chapter OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 697 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 744
Default Settings for Troubleshooting Features Troubleshooting Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 698 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 745
P E N D I X Appendix • Configuration Limits, page 699 Configuration Limits The features supported by the Cisco Nexus 5000 Series switch have maximum configuration limits. Some of these limits apply 50 ACEs per PACL. OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 699 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 746
of supporting up to 239 switches per fabric but this is not currently implemented. 7 The switch is capable of supporting up The switch is capable of supporting up to 20,000 zone members per fabric but instance can support up to 32 VSAN instances. 13 The switch is capable of supporting 480 virtual - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 747
per Cisco Nexus 5000 Series switch. In a dual homed Fabric Extender topology, the total number of hosts supported is also 480. 17 1,000 entries are reserved multicast MAC addresses and the remainder are for unicast MAC OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 701 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 748
Configuration Limits Appendix Cisco Nexus 5000 Series Switch CLI Software Configuration Guide 702 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 749
user roles 238 specifying user roles in VSAs 236 OL-16597-01 INDEX AAA services configuration options 229 remote 228 accounting description 227 active zone sets considerations 546 enabling distribution 471 blocking state, STP 160 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide IN-1 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 750
switches 630 sample configuration 633 diagnostics configuring 331 default settings 332 expansion modules 331 health monitoring 330 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide IN-2 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 751
displaying information 589 E E port mode classes of service 463 description 463 E ports configuring 469 fabric binding checking 653 FCS support 661 FSPF topologies 577 isolation 465 recovering from link isolations 657 OL-16597-01 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide IN-3 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 752
479 fabric security authentication 625 default settings 634 Fabric Shortest Path First routing services 577 Fabric-Device Management Interface 595 fabrics 480 fault tolerant fabrics example (figure databases 604 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide IN-4 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 753
links 578 resetting configuration 580 resetting to defaults 580 retransmitting intervals 583 routing services 577 topology examples 577 FSPF routes configuring 585 description 585 full zone sets suspended states 523 UDLD 66 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide IN-5 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 754
, 178 operations within a region 177 mapping VLANs to MST instance 186 MST region CIST 177 described 175 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide IN-6 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 755
hop-count mechanism 179 supported spanning-tree instances 176 multicast storms 221 N N port identifier virtualization 473 N ports FCS support 661 fctrace 686 -learning 636 compatibility with DHCHAP 627 configuring manually without auto-learning 644 deactivating 639 default Configuration Guide IN-7 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 756
640 deleting 651 displaying configuration 652 interactions 649 manual configuration guidelines 638 merge guidelines 648 reactivating 640 669 port world wide names 543 PortChannels show tech-support port-channel command 693 PortFast BPDU filtering 201 ports VSAN Configuration Guide IN-8 OL-16597-01 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 757
612 secondary VLANs 88 serial IDs description 363 server groups 229 server IDs description 363 service requests xlvi session manager 325, 327 committing a session 327 configuring an ACL session ( specifying AAA parameters 236 Cisco Nexus 5000 Series Switch CLI Software Configuration Guide IN-9 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 758
manually monitoring 266 verifying configuration 267 TCP ports TACACS+ servers 263 TE port mode classes of service 463 description 463 TE ports fabric binding checking 653 FCS support 376 troubleshooting collecting output for technical support 689 fcping 687 fctrace 686 show tech-support command - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 759
Index troubleshooting (continued) verifying switch connectivity 688 trunk mode displaying usage 541 domain ID automatic reconfiguration 484 FC IDs 531 FCS support 661 features 531 flow statistics 590 FSPF 580 FSPF connectivity 577 interop 5000 Series Switch CLI Software Configuration Guide IN-11 - HP AP775A | Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL- - Page 760
allowed 508 trunking ports 536 VSAs format 237 protocol options 237 support description 237 W world wide names 611 WWNs description 611 merge failures 465 renaming 558 restoring (procedure) 557 show tech-support zone command 691 viewing information 559 zoning description 543 example 545
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
First Published:
07/17/2009
Americas Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 527-0883
Text Part Number: OL-16597-01