Cisco Nexus 2000 and 5000: Configuration and Troubleshooting [Webcast]

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

our community today we present I've asked the expert event inside Cisco live and networkers virtual today our event our expert will be answering your questions on the Cisco Nexus 5000 series switch and a 2000 series fabric extender my name is Daniel Gerson and I am the content manager for Cisco live in networkers virtual here at Cisco our expert joining me today is Lucien Abramov Lucien holds a CCIE and is a member of attack data center team here at Cisco Lucien will provide configuration and troubleshooting tips for the nexus 5000 series welcome Lucien thank you Dan now I'd like to briefly outline the format for today's ask the expert event Lucien will start with a short presentation on the Nexus 5 thousand for the first 25 minutes of the program and then we will dive into the live question submissions for the remainder of the event during our live presentation you may submit a question to be answered by Lucien on a team of Cisco technical experts using the submit box on the left side of your console simply type your question and press submit to see the latest questions and answers during today's presentation be sure to click the refresh button located just under the slides you can scroll up to see previous answers in the Q&A box the team of technical experts is well-versed in six and well versed and Nexus configuration so please begin posting your questions now to give us the best chance of answering them we'll be asking polling questions during this webcast and we encourage you to participate by answering them in fact the first person to answer each of the three polling questions will win a one-year premier pass to Cisco live in networkers virtual which will give you full access to hundreds of PDFs and on-demand webcasts so that's three polling questions with free pick three chances to win now let's get started with today's event we'll kick things off with a polling question what topic are you most interested in today V PC or virtual port channels the Nexus 5000 or the Nexus 2000 take a moment to answer okay let's have a look at these results looks good Nexus 5000 with a V PC right behind it okay now I'd like to hand the mic over Lucien who provide insight on Nexus switches thank you Dan welcome everyone in today's agenda as we will be covering the following virtual port channel Nexus 5000 and the Nexus 2000 series I'd like just to quickly mention the wording I'll be using you'll see me using Nexus 5 thousand or five thousand or 5k and for the 2001 I'll be talk about two thousand you'll hear it about as Nexus 2000 2k or fabric extender and as well FEX so those are the words I'll be using for the 2000 i'll mainly use the FEC's word now as we saw in the point we'll start with the virtual port channel and let's first talk here about the terminology we'll be using so here is a diagram showing VPC and we have the nexus that we have the five thousand two switches a pair of five thousand and we have effects down downstream so a VP c-p-r will be what we call a switch forming one of the pair so a VP c-p-r would be the other 5k in this one scenario we PC member port 1 1 of a set of ports that will form a V PC V PC the virtual port channel is the combined port channel between the V PC peers and the downstream device VPC pure link is the link that is used between the V PC peers to and to to synchronize the state and to carry multicast broadcast floating traffic and data traffic in case of a PC member port failure there's also the V PC pure keepalive link the pure keepalive link is used between the V PC peer switches it's it carries a heartbeat and it makes sure's that the other switch is alive finally CFS stands for Cisco fabric services protocol and this is used for state synchronization and configuration validation between the V PC pure devices now let's move ahead and see the see our feature overview here what does V PC do and allow us it allows a single device to use a port channel across to upstream switches so this is the difference really between a poor channel and a virtual port channel it also eliminates spanning tree protocol blocked ports it uses all available uplink bandwidth in other words as a regular port channel would have an active active scenario where both links will be up or more than two depending how many links you have in your poor channel duel home servers will operate in active active as well as switches and vbt provides fast convergence up in length device failure now let's talk about designs what are all the options that we have for V PC with our 5000 n and 2000 series on the left here you can see three designs which are without V PC so the top switches would be the 5 KS and downstream would be defects and the little icons would represent a server so without V PC well could do is have one link between a 5k nfx or poor Channel we could have a pair of sexes connected to a server that's the second drawing and the server will be an active passive mode here either one link will be active and if that link fails the other one will come up this is without V PC with V PC we provide high availability in case of failure of one of the switches or the fabric extender so V PC designs as you can see here first off the first drawing in the middle up is represents a V PC to the effects so here we have two v pcs from each fax going to the 5 KS so instead of having two links from each fax going to a single 5k we cross them and so each fax will has two links but to both 5 KS and both are active so in case a filler of one of the 5k traffic will still flow to the other one we can also have V PC to the server and those are the two drawings down in the middle and there the server will be active active so that both links on the server will be up and each one will go to effects to a different physical effects so this will be called V PC to the server starting for two code on nx-os and with the 2200 series fabric extenders we can have duo V PC and here you see we have this as the last drawing on the right the bottom we have V PC from the facts to the 5k and we have V PC to the server so we have dual layer V PC let's move ahead now and talk about the path forwarding what what what in this example we'll take unicast forwarding so you can you can understand what's the traffic flow on a V PC pair so let's say we have a host a down on the right and host a wants to talk to host C which is on the top right so bottom left to top right host a will first send a packet to host see and and it has a port channel it has one connection to each fax so host a will run its own hash algorithm to select one of the paths so the operating system will you will choose with many cards were to send the traffic so let's say it sends it to the left to the fax on the left the packets received on the facts and then the fax will run a hash algorithm to select the fabric uplink well here in this example it has it has a port channel 2 to the 5k so will be either one of the two links and so the effects for is this this packet to the 5k 1 the 5k one on the Left will now learn host a and it will flood the packet to the VLAN members where host a is as well one copy will be sent to one copy will be sent to the switch which is upstream and one copy will one copy will be sent to host B and one copy for the pure link so it will flood the packet now the 5k 2 which is on the right will flood the package to the VLANs to all the view line members except the V PCP remember port to prevent duplicated packets so in here you will it will not send the traffic up to the switch upstream or down to the FEC's 5k1 will update host a entry to 5k 2 so 5 k2 will have it ends at MAC address table and the packet reaches host see once it reaches the switch upstream its forwarded to host C and host you receive the packet now let's talk about the return packet so host see would like to talk back to to reply to host a so sends the packet and it's received by the suite upstream the switch upstream as you can see also has a V PC - both 5ks and and for that switch it sits as one logical switch so switch the switch on the top will run its own algorithm and select the path and let's say in this case you will select the path to 5k - so switch sends a packet to 5k - and 5kt will now search the in its MAC address table an entry for host a and we'll find that this entry for host a points to its local effects that belongs to the V PC bundle so 5k - will send the packet to that fax on the right and once the fax receives it it will just forward it to host a bat based on the internal header constructed by 5k - and now host a has received the packet back now let's move on and talk about V PC interaction with spanning tree spanning tree protocol is deployed to prevent V PC failure cases only the V PC primary switch will be running spanning tree protocol the secondary V PC member here 5k - will forward bpdu frames to the primary also keep in mind the V PC pure link is not blocked via spanning tree and how does the V PC primary election work well it's based on priority so an election happens and and in this one example the 5k one on the left is the primary and the 5k two on the right is the secondary now as we spoke about how V PC works let's go ahead and see two examples the first example is how we're going to configure V PC to the server so in other words an active active NIC teaming on the server so here is the configuration for it first we need to enable V PC so we'll go ahead and end a feature of e PC well will also enable LACP so feature LACP will will configure a VP C domain number so for example we'll pick a number and this number has to match on both switches so in this one slide here you will see the details of configuration for 5k1 they will have to be duplicated on the other switch as well now we pick for example VPC domain 1 on both and and then we will configure what we call the pupil eyes so the pupil eyes should be running over the management 0 interface and the management vrf on the 5k so the way you can figure this is with the pure keepalive destination and you provide the IP address of 5k 2 in this example as 1 5 k 1 for the config now once we've configured our V PC domain and our peer keep arrives we're going to go ahead and configure the peer link the peer link between both 5ks in orange this is the second step so for example here we have two interfaces internet 1/17 and ethernet 1/18 we'll place them in a poor channel mode active so we'll use LACP and under that poor channel width one thing we will do to mention that it's a pure link we will type V PC pure link this is how our 5ks will know that this is the pure link to the other video to the V PC peer also will use a trunk and on the trunk will allow all the VLANs that are on the V on the that will be used on the V PC downstream so all your V PC traffic all the view ends that are used needs to be allowed on the pure link once our pure link came up now we can go ahead and configure our FX so on the FEC's side in our example here let's say we have Internet 1/7 and Ethernet 1/8 on the 5k one that goes downstream to the effects on the Left we'll go ahead and place those two ports in a port channel 4 channel 100 in this example and we for this port channel will say that it's effects so we'll say switch port mode text fabric and effects associate 100 so will associate effects 100 to it this will be just a regular pour channel between the 5k and effects and now here comes our server configuration in green there we will configure and the configuration happens on the 5k there is no configuration that can be made on the facts all the facts config happens on the 5k so now to configure the V PC to the server we'll go in the in the port where the server is physically connected on the facts so as we decided our flex number will be 100 then the port and our server let's say is connected to port 1 we go to interface Ethernet 100 slash 1/1 we call a port channel so in this example port channel 10 and we will say that for channel 10 is part of V PC 10 the numbers are arbitrary you can decide what you what you use but I strongly encourage you to use consistency between your port channel numbers and your V PC numbers you will do the same configuration steps on 5 K 2 and and so the other effects will also know that for just pour channel 10 is part of EPC 10 and that way those two links will come up and here you have configure V PC to the server with an active active NIC teaming now let's move we move forward and now talk about V PC to the effects where once X will have links to each 5k so in case of failure of one of the five kage defects and the server's connected to it will have connectivity the first two steps are the same configure your V PC domain and your peer keepalive and configure your peer link the only difference here with the previous example is that will configure V PC on the poor channel that goes to the effects so we configure the poor channel for the fix about exactly the same but will only add a V PC statement in there on on both v KS so they know that that we have a V PC formed so in this one case we have two cables going up to the left 5k 1 and n 2 connection up links going to the 5k - on the right and will on both 5ks welcome we'll call it for example VPC 100 and this will this will conclude how to configure V PC to the effects now let's go ahead and talk a little bit about how to troubleshoot V PC how to find out if V PC is properly set up and how to find your the problems in an end to tackle them the first command here I would advise you to use is the show V PC brief the show V PC brief will resume the brief of your configuration it will tell you your V PC domain ID it will tell you the status of your peer if your period Jason C has formed okay you'll also tell you the status on the keeper lives so we'll say Pierre is alive if we can reach the appear all across it's management's your interface configuration consistency status if config consistency has happened it will say success V PC role choose you will be able to read if it's your 5k where you should this command is primary or secondary it will tell you how many V PC are configured and it will tell you what what is your peer link if it's up what is the poor channel used for it and what's the V PC number mapping what are the villains allowed and then down it will list all the other V pcs with their poor channel information in the V PC ID number the second command to use for V PC P R is the show V PC P R keep alive if you like to have to troubleshoot a pure keepalive issue where your peer doesn't come up and says not alive or never was alive then run this command show V PC pure keep alive here there's two outputs one is for each 5k and so here you can see for each one of them the status so in this one example it will say P R is alive it will say how long it was a live for what's the actual status when was the last people I've received on which interface what is the IP address and so forth if you like to look about who is primary and secondary have more details about about that the command to use is the show V PC roll and this will tell you who the primary what's the MAC address was the system priority and on each one so you can compare and what are their MAC addresses this is for the V PC P R how to check your configuration now let's go ahead and talk about consistency how to make sure that you are consistent in your configuration over both 5ks so one coming I recommend you to use is the show V PC consistency parameter is global and you can run this on each of the five K's and there's two main columns there so in this one output from one 5k you can see the local value Colin and on the right side the pure value column so basically this will compare the values that are locally configured to its peer and here what you want to look for is differences you shouldn't have differences for everything which is type 1 in the Colin where it says type the middle Colin everything that is type 1 needs to match on both 5ks if you see a difference there well if it's the pure value that is different go ahead on your other 5k and make the configuration change if it's on the local then go ahead and make the change on your local but you need to have if you're seeing consistency error messages well this this show command will help you find out what's different you can do the same thing for the poor Channel two defects for the consistency so for this you can use the command show V pcs show V PC consistency parameters interface port Channel and then you can specify the port channel you'd like to look at and here will tell you again type 1 are the values that need to match on the local 5k and the pure 5k and and those are not 1r okay to be a little different if you're wondering how we know the local end up here this is when CFS comes in and this protocol helps each 5k to know the peer values and now I'll hand the mic to them this concludes our VP c-section okay everyone let's have a look real quick at our second polling question how familiar are you with the nx-os exits 5000 nexus 2000 series never heard about it someone heard about it familiar we're using it every day take a moment to answer in the meantime I will remind you that you can download today's PDF the full presentation on the upper right-hand corner of your console ok let's have a look at the results okay very good I'm going to hand the mic back to Lucien please continue Thank You din now let's go ahead and talk about Nexus 5000 all right first off let's let's go ahead and talk about configuration that's going to be our next four slides and and after that we'll go ahead and talk about tool troubleshooting tools and other things to to use so you can analyze your your your your network with the 5k so the first main thing is connectivity how to establish connectivity to your 5k so you can configure it I recommend you to use the management vrf for that purpose with the management 0 interface first of ss that you can use SSH or telnet to connect to it SSH is enabled by default and if you like to use telnet then you need to enable telnet on the 5k so you need to go ahead and type feature telnet and enable that once you've you've decided if you use telnet SSH go ahead and configure management 0 so go on interface management 0 provide an IP address if you like to provide a default route which which is probably what you'll do when you'll be accessing the device from a different subnet then the management 0 IP then go ahead in vrf context management and and issue your default route statement that's that's the method I recommend you to use for for connectivity if your design our business needs are that you have to use a 10 gig port and an interface VLAN you can do so for that we need to enable first the interface VLAN so feature interface VLAN and add the VLAN to the VLAN database the one that you'll use to connect so VLAN and the number and exit so you put in the database and go interface VLAN and provide an IP address don't forget to unshut the interface by default interface VLANs are shut down and here you can provide a default route following that to your gateway but here we'll use the vrf context default instead of the VRS context management once we've we've configured connectivity another fundamental thing is how to upgrade your code the command is a little different than iOS here and and and this is it's so different also in the structure because there's two files there's what we call the kickstart image and then there's what we call the system image so when you want to do an upgrade of your 5k code you'll have to download two files the kickstart and the system file from our cisco.com website and by the way for the effects code you don't have to download anything different the Flex receives it code from the 5k so when your 5k runs one specific version of code your effects will run that version as well and it will receive it from the 5k so you have two images once you've done load them the preferred method to use is with the install all command and so the syntax is install all kickstart provides a path to it so probably it's going to be your boot flash and your file name and in space system and end the path end of file for the system file when you when you use install all this will update the effects primary image in addition to installing the switch images the facts will remain online while the installation is in progress and after the installation defects will be rebooted along with with the 5k how long this process will take you once you've typed the command install all - when you come back typically I would say runs for about seven minutes about five minutes for the 5k and two minutes for the effects so let's say under ten minutes is what you need for for the downtime to get the image upgraded there's a configuration check that's performed during a image install so you can see that with the show install all impact kickstart or and show install all status so you can see what has happened if there's anything that went wrong and why keep in mind to use install all this will also take care of upgrading everything properly such as the power sequencer so use that command and don't only set the boot strings to a newer code as as you can as you can do it like on iOS but I strongly recommend you to use install alcaman another interesting topic about configuration is the jumbo frames so the 5k is a 10 gig switch and inter-process larger traffic enabling jumbo frames is helps jumbo frames or sixth time it's a six time bigger MTU so it's optimized for 10 gig traffic the maximum value for jumbo is 92 16 you can of course use anything above 1500 and it will be called jumbo so any value between 1500 and 92 16 is a jumbo frame so you need to enable jumbo on the servers in your OS so for example on ESX if you're running VMware and enable it also on the 5k by default it's not enabled so here is the configuration you can use to enable jumbo on your 5k you'll create a policy map you'll use the policy map network QoS that's already there and you'll set the MTU also there's another command the command system jumbo MTU that defines the maximum MTU size for the switch however jumbo mq is only supported for system classes that have the MTU configured so the command system jumbo MTU and the value it will be disruptive so when you configure jumbo empty jumbo frames you will have a you'll have a link flap there let's move on to a password recovery how to recover and get back on your on your on your 5k so login to your console port power cycle your switch during booting press control bracket to get to the five key boot prompt in case you're running earlier code four zero code and one or earlier the process is slightly different it's the ctrl shift B to get to the boot prompt and once you're in the boot prompt basically the switch only loaded the kickstart image and and there you can go ahead and go and config T and change the password with the command admin password once you've done that you load the system image with the load command and once you get back on the switch you you'll be able to login with the new password so this concludes your or how to configure the main functions over 5k let's now go ahead and talk about things you can use to to troubleshoot your network the first one I'd like to talk to you about is the Ethan Eliezer this is a packet capture utility built in nx-os for packets for the packets that are received to the CPU on the 5k which are for destination to the 5k so a couple of things to ask yourself what interface you like to monitor is that your inbound in other words your ten gig interfaces or is it management the management 0 interface do you want to save the output as a file or do you just want to display it would you like to filter for a specific port in protocol do you want to just read a file that you already stored and if you just want to have a sample you could just preview the first packets so now let's go ahead and see how to configure this there's a little change in the commands in our code so but here are the latest the latest comments to use wait first off so what interface type you want to monitor here's how you do it the only difference in the commands are before we used to do we used to have Ethan Eliezer local interface now in newer code the command is Ethan Eliezer local Smith - interface so there's a little change there in the in the in the keyword but everything else is about the same so you have what interface you want to monitor you can save the packet capture as a file so for if you like save it as a pcap and then if you copy it to your to your to your computer you can open it with Wireshark or TCP dump you can filter for specific ports and protocol you can use the regular filters as in this example you can read files with the following command and you can preview capture note that the the previews have changed for infor to code it has moved from the default value of 10 of 100 to 10 however you want to change this back you can there's a command it can use to change it anythin eliezer gives those packet captures for all the traffic that goes with destination to 5k everything else is a fabric switched and won't be will be won't be captured by Ethan Eliezer which takes us to the next session how to monitor traffic between hosts and switch traffic on the 5k for this purpose you can use span span set stands for switch port analyzer how do you configure span well it's pretty similar to iOS one chain one slightly differences if you if you'd like to spend fibre channel traffic there's one slight change there where you will go in your fibre channel interface and and you will set the switch port mode to SB that's one difference for Ethernet traffic it's it's about the same configuration and we can configure your source port and you can you can look at your spend session very similar as iOS with the show monitor command don't forget to go and unshut your your monitoring session as well or shut it down if you like to activate or deactivate it now let's go ahead and talk about a few troubleshooting tools and a couple of issues that that come frequently to the TAC first SFP issues ports not coming up well a very frequent message you can seen your logs is you may see in your logs at SFP validation failed for that you can the command is to look at it as the show logging so that will I will show you the logs and you'll see an orange a message for the validation or it will give you a reason for in this example for example it could be a unsupported transceiver so I urge you to go and use our compare compatibility guide and metrics for supported SFPs to make sure what you have is supported by the 5k another issue that comes as temperature issues how to look at those well show environment and show environment show environment affects for the fabric extender this will tell you if there's temperature issues and it will tell you as well if there's a fans that I may have failed crash how will you know detect crash and and the reasons for that so a crash is usually recorded with a core file on the switch if you should show version it will tell you what was the last reset of the switch and the reason you also have the command show system reset reason it was this will list when and why your your your five key has has reset it or crashed and once you know that how to move on next well usually crash is followed by a dump of a core file so to look at your core file and find it type show core this will show you if there's a core file that has issued if you see a show a core file there you can get the core file and to do that it's the last command III enters here you can copy it and you can use the different information so the module number the instance the process name and the PID and you can export this and this will be very helpful when you'll troubleshoot with the tach the reason of your crash so that's how you can get the core file now this will and our session for the 5k and I'll give the mic back to that hey thank you Lucia let's go real quick to our last polling question how many Nexus 5000 or 2000 series switches are deployed in your environment one two five six to twenty twenty-one to fifty if you want or more take a moment to answer I have a look at the results excellent okay I'll have the mic back to loosen a little wrap up the presentation thank you Dan now we'll be talking about Nexus 2000 configuration troubleshooting in this very last part so first off there's three designs keep in mind there's two keep in mind and two to select so pinning a single link or multiple links using pork channel and pinning multiple up links to it or using VPC when you can I strongly encourage you to use VPC if not just use a pork channel between your facts and the 5k how do you configure the facts well you go in the interface Ethernet on your 5k that's connected to the facts and you tell the 5k that this is affects that's connected so switch port mode affects fabric and you'll have to choose a number for your facts so for example a number from 100 so for example if X associate 1:01 here if you connect your effects to two different five K's I please use the same flex number especially if you want to use V PC and this is how you verify it show interface internet and effects a few commands to help you verify your configuration show fax this will tell you the fax number the description the serial number and what's the state of it the show fax detail will tell you more about your fax and and you will see the fabric ports that are connected to the effects and the the pinned fabric ports if they're pinned in a port channel or if it's static painting if you're using port channel obviously the primary fabric will say port channel how to find out if you have if you're getting mismatched messages on faxes look at what physical fabric ports are connected to the fax and the serial numbers so show interface like fabric will tell you that and quickly I'd like to tell you about three scenarios for troubleshooting the first is effects is not discovered flex is not discovered so first off you know check your power your fans your chassis lies check your layer 1 cables and check on your transceiver also use the version also use the compatibility version between sects hardware and nx-os if you're running 2200 faxes make sure you're at least on for that to code on the 5k and connect a single user single connection to a 5k as well eliminate the other help links and that doesn't help of course move on and contact the tag another another issue is the fax is not coming online there's two reasons there's for DES to happen provided you have you know the proper power and fans and so forth it could be a flash failure or an asset failure if it's a flash failure the effects will come online and the show interface FlexFabric will no show will not show the fabric port as active also the locator LED will flash when the fax fails to boot if you have an ASIC failure in other words a hardware failure defects well well well may not come online if it's the harder that is connected to the 5k if it's other hardware equipment you may see it in a show diagnostics and finally an issue that comes very often identity mismatch if you get a message saying that you have an identity mismatch there's most likely miss configuration between your ear both 5ks or your cabling is may not have been done right to your five case so look at the previous command to find out to which 5k you're connected and use the same configuration now I'd like to talk about performance issues to conclude here if you're if you're seeing if you're observing slow traffic traffic laws or your application is not performing as expected first of think about are you using a proper design do you have you because you'll have 10 gig up links and you may have one gig to your servers is your design right re aren't you sending more than one gig traffic to a server that has only a one gig card that would be the first question to ask yourself and review the design guides which I will will indicate in the in the next documentation portion provided this there are on the Nexus 5 K there are three things you can look at for this issue so first is how to identify drops there are logical and physical causes for the 5k to drop a frame and there's also situation when a frame can be dropped because of the cut through nature of the switch architecture if drop is necessary but the frame is being switched in a cut-through path then the only option is to stump the ethernet frame check sequence the FCS and stomping a frame involved setting the FCS to a known value that doesn't pass the CRC check so when a frame is received on an ted geek interface it's considered to be cut through path how you would look therefore drops well the command to use will be the show platform fwf fwm info pif Ethernet and your port and there look at the last few lines for transmitted and received statistics and look at the drops and the discards another set of two other commands for the expected logical drops you can look at at the hardware so those are the two commands here I provided you with and and look at the numbers of of drop packets and look at the increment over time to the increment so you should commence a couple of times and it's the same for identifying drops too to see if you're an issue where drops are happening issue the commands a few times another issue with performance is when your buffer queue is getting fooled so show queuing interface and your interface this will tell you if there are drops queued if a queue is full so when a queue is full you need to increment discards in the respective queue on the egress interface and you will observe discards on the facts how would you look for drops especially here I give you the commands for the 2148 they are a little different for 222 hundreds but it's it's the it's a similar structure so those will also tell you about your queues and buffers and drops that you could you could you could experience so those are key commands to troubleshoot performance and see if something is happening on your on your 5k in faxes in conclusion I like here to give you a couple of pointers to document for 5k the product page the config guides the release notes the installation hardware guides and as well for defects a couple of key documentation places for your reference and a few other things would cover today password recovery eath analyzer span and finally about VPC the configuration guide the QuickStart guide I encourage you to look at the Quick Start Guide if you're new to V PC it's very well summarized the white paper and at the very end the design paper so this is a very good document that will cover the designs we we talked about today and and all how things come together and what design to use to meet your business needs and this will conclude the my presentation so I'll give the mic back to that hey thanks Ellucian great presentation also thank you to everyone for participating in the event polling now it's time to answer some of the questions that our viewers have submitted today by the way if you can't stay with us for the discussion be sure to click on the evaluation button to let us know how this session met your business needs and expectations also the first 10 listeners to complete the evaluation will receive a $20 Amazon gift card ok let's move into the Q&A portion of the event and just please be aware you can still submit questions at any time let's move to our first question does the Nexus 5k support V PC sync between the V PC peers excellent question so we know that there is a CFS protocol that's used between the the 5k pair and as of today's code there is no configuration sync however very soon in our in our next release of code there's a feature called config sync where we have worked to to basically empower empower this so you don't have to replicate all the configurations across and configuration changes so look for our next code release our next main code release which are which is coming up and then the feature is called config sync great move on to our next question what is the most appropriate method of toggling the V PC role when there is a role mismatch okay when when there is a tog a mismatch for the V PC role well you'll have a V PC primary 5k and and the other one will be secondary so typically you will not see a mismatch there will be an election based on on the on the priority that will occur and and and you will have a primary that will be elected and a secondary in case of failure V PC scenarios if you if we lose connection to the primary let's say the the secondary can take over and assume the primary role but any will tell you VPC secondary acting as primary hello let's move to our next question I have a five thousand ten and a five thousand twenty can I use the ports with a speed of one gig okay you have fifty ten and a fifty twenty yes you can use port speed of one gig so the 50 ten it's the first eight ports where you can set the speed to one gig and of the fifty twenty it's it's the first 16 ports that you can use and the command is speed 1000 so those keep in mind the first interfaces are the one you can use for it to set the speed hey let's go to our next question assume the following a nexus 5 k with a 2k fabric extender the fabric extender fails and a new one is requested from the tech assume when the 2k goes down all the configuration is lost or gone from the 5k when the new 2k is connected do we have to reapply the configuration for the relevant portion of the 2k so we you have we have a 5k and a 2k and in your fabric extender fails you get a new one so when you get a new one and just connected directly it will come up with with effects number configured however I encourage you to save your configuration because you may need to reapply it there will be configured so yeah that's the you save your configuration and and the fax number will be defined but you will have to enter your your order settings for the ports all right next question as the Nexus 5k provide 10-gig speed to every single port yes it does you can use every of it of it of its off its port with a 10 gig speed correct alright let's get another question here please please do submit any more questions if anybody has them is jumbo MTU enabled by default on the Nexus 5 k jumbo MTU is not enabled by default so make sure to configure this as we saw in our jumbo frame section slide and enable the jumbo frames 4 for the 5k by default it's disabled very good another question here what cloth what kind of l-3 features will be supported in 5k and nexus 5 k e IG RP OSPF rib to isis and pls vr e RF light etc good very good question so as of today the 5k is a pure layer to switch and they will be actually a additional module that will provide layer 3 features a dollar card that you'll be able to place in your expansion slot so the features that will support it I'd like not to go exactly in detail for now but yes you will have routing protocols and and you'll have a good handful of of layer 3 features if you like exactly to get all the details I could provide you this during our ask the expert event falling today of another question here and I use a analyzer to sniff traffic between two hosts you should use pen and not eath analyzer keep in mind that each analyzer is for traffic that is going directly to the 5k so in this scenario users pan another question here what SP what SFPs can i use with nexus switches good question so there's the matrix compatibility guide for the 10 gig we support the SSP 10 gigs which are the SR the L R we support the 20 X K balls with one three five meters all the tween 20 cables available we also support the FE T which are the SSP n Fe T stands for fabric extenders so those are the s FPS to connect to faxes those are for the 10 gig for for the for the one gig you can use the GLC keys for example make sure to use Cisco SFPs else you'll get you'll get unsupported as a fee message alright next question here is our spin supported on the 5k our span as of now is not supported there is ER span support but not our span at this point it's in the works it's it's it's it's in the works but as of today our span is not supported alright next question here what would you use as a core to go with the Nexus 5 K good question I would use either either seven a third seven KS as a pair or I would use a cat 6 KS that with the SS but but this is this depends also on your business needs there's other ways there's other other switches you could use you could use catalyst 45 hundreds you could use you could use other upper switches depending on exactly what is your your deployment what are you trying to achieve if you'd like 10 gig up well yes certainly use use if you can 7 K as a pair if and if you can if you if not you know a VSS a cat 6 K pair in VSS those are those that would come to my mind first I would say in large data center deployments but you could use other other other switches as well depending on on on what exact design you're trying to achieve let's go to our next question here what would we be able to upgrade existing Nexus 5 K is to support l3 features and cards that's a good question there may be a need to change your Nexus but not for the l3 so actually they will be there will be a newer on your hardware coming but for l3 you will be able to use it with your actual so long story but no you don't have to upgrade your your hardware to support the l3 feature card alright at time for one more I think is the Jumbo MTU affecting performance if it can sink configured unnecessarily no it doesn't it doesn't you can configure it and and this all the traffic is Hardware switched so actually if it's not configured the 5k will actually try to reduce the size of packets or a larger but if you configure it you will not be affecting performance so there's no reason why not to configure it hey I think that wraps up the QA for today's events thank you everyone for participating if you have additional questions make sure to log onto the cisco support community URL listed here lucien will be continued to answer your questions at the community site over the next two weeks if you have not explored the cisco support community take a moment to check out this excellent resource thank you also make sure you join us for our next apps the expert event that will be coming up on november 18th at 10 a.m. pacific time our topic will be t-38 facts over IP and best practices we are also welcoming a new series to the cisco live and networkers virtual environment the well-known techwisetv crew will be hosting new episodes starting on october 14th at 10 a.m. Pacific time and the topic will be beyond the virtualized data center learn how the newest data center and virtualization innovations can maximize the benefits of virtualization across your entire network strengthen security and simplify management make sure you come back and check out that show we encourage you to support of all environment including the cisco and partner booths in the world of solutions on demand technical sessions and the session catalog and the blog center if you have a guest membership you can upgrade the virtual premier pass which will give you full access for only 395 US dollars or five Cisco Learning credits if you are only looking for a few specific sessions then we have an option for you as well our new Alucard pass enables you to purchase individual sessions for only 45 US dollars each also we invite you to attend Cisco live 2011 taking place at four different venues around the globe all of these events will have a virtual component so please be sure to check back here in Cisco live virtual calm before signing off please do take a few moments to complete your evaluation of today's session this will help us address your business needs and interest in the future thanks again to our expert Lucien for sharing his expertise with us today and we wish you a great day

Info

Channel: Cisco Community

Views: 97,735

Rating: undefined out of 5

Keywords: configuring nexus 5000, configuring nexus 2000, configuring N5K, configuring N2K, troubleshooting N2K, troubleshooting N5K

Id: T6ty_38bJpc

Channel Id: undefined

Length: 60min 6sec (3606 seconds)

Published: Wed Oct 27 2010