Catalyst Instant Access Jaromír Pilař, Consulting Systems Engineer, CCIE #2910 Catalyst Instant Access Overview Instant Access Solution Overview Focus on reducing complexity in the Campus LAN – Simplified Ordering – Simplified Configuration – Simplified Management Reduced number of touch points (reduced OPEX!) – Treated as one device for the distribution and access layer – One device for configuration and image upgrade – Consistent CLI across the distribution and access layer Investment Protection – Can leverage existing 6500 distribution deployment For more details see whitepaper at http://www.cisco.com/en/US/prod/collateral/switches/ps10902/ps715/ps13198/white_paper_c11-728265.html Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Instant Access Components Distribution Pair of 6500/6807 with Sup2T or 6880 in VSS Mode • Requires 6904-40G Line card with 4x10G Adapter and SFP+ • Requires IP Services License or greater • Minimal Parent configuration single 6500 in VSS mode Instant Access Parent 10G Fabric Links • Can be SR, LR, LRM, ER, Twinax • Up to 60G MEC between Client stack and Parent • 1G mode supported as well but not recommended Catalyst 6848ia Client Switches • 6848ia supports Stacking up to 3 clients in Phase 1 • 144 ports per stack in Phase 1 Fabric Links 6848ia 6848ia 6848ia Can Support Switches connected to the Client Ports • These would be treated as standalone switches, not managed by 6500 • No support for cascaded IA Clients Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Instant Access Clients Shipping Instant Access Client - Catalyst 6848ia Two available SKUs: – 48p of 10/100/1000 Ethernet with PoE+ and 2 x 10GbE SFP+ Uplink Ports – 48p of 10/100/1000 Ethernet (non-PoE) and 2 x 10GbE SFP+ Uplink Ports Stackable up to 3 clients in Phase 1 80G Bidirectional Stack Bandwidth Includes Stack Module, no licensing required Single Fixed Power Supply and Fixed Fans All ports 802.3at capable. PSU capable of 30W on 24 ports/15.4W on all 48 Ports Operates in Client Mode ONLY (no local switching – traffic between local ports goes through parent switch), not convertible to standalone switch Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public FCS planned for August 2014 Instant Access Client with redundant power 2x 1025W Power Supply Redundant Mode Only PoE/PoE+ Option Only PWR-C2-1025WAC= Built-In Stack Module 740W POE Budget Stackable with existing 6800ia 15W on 48 ports or 30W on 24 ports Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Cisco Catalyst Instant Access VSS Standalone Si Si Si Si Si VSL LACP or PAGP Access Switch Instant Access LACP or PAGP Access Switch Access Switch Si VSL LACP or PAGP Access Switch Instant Access Client SDP SRP SCP Instant Access Client Benefits of Instant Access Simplifies Operations via Single Point of Management, Configuration, Troubleshooting across Distribution & Access Block Catalyst 6500 features at Access Presentation_ID Consistent Features and Agile Infrastructure acrossCisco Access layer Cisco and/or its affiliates. All rights reserved. Public VSS Campus with Stacking VSS 29 Total Devices for Image and Configuration Management Core 48 Access Trunks/Port-Channels 4032 User Ports Considerations: STP Loop Prevention FHRP Tuning CAM/ARP Tunings PIM Tuning/DR priority Routing Protocol Tuning Building 1 Presentation_ID Building 2 Building 3 Cisco and/or its affiliates. All rights reserved. Building 4 Cisco Public 29 Separate Configurations of SNMP, NTP, TACACS, Banner, vty, VLAN DB, Mgmt IP/GW, Hostname Catalyst Instant Access Instant Access 5 Total Devices for Image and Configuration Management Core Automated Trunk Configuration 4032 User Ports Considerations: STP Loop Prevention FHRP Tuning NO Trunks to Configure from Access to Distribution CAM/ARP Tuning PIM Tuning/DR priority NO Routing Protocols or Spanning-Tree configuration between Access and Distribution NO Configuration or Image Management at Access Building 1 Building 2 Building 3 Building 4 Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Routing Protocol Tuning 5 Separate Configurations of SNMP, NTP, TACACS, Banner, vty, VLAN DB, Mgmt IP/GW, Hostname Catalyst Instant Access – topology options (1/3) Recommended Design Si Si IA client dual homed to VSS Pair Presentation_ID Si Si Si IA client dual homed to VSS Pair across stack members Cisco and/or its affiliates. All rights reserved. Si Up to 6 uplinks (60G) MEC from client to parent Cisco Public Catalyst Instant Access – topology options (2/3) Possible but “Not Recommended” Si Si Si IA client single homed to VSS pair Presentation_ID Cisco and/or its affiliates. All rights reserved. Si IA client single homed with up to 6 links in MEC across stack members Cisco Public Catalyst Instant Access – topology options (3/3) Possible but “Not Recommended” Si Si IA client single homed to single switch in VSS mode Presentation_ID IA client dual homed to single switch in VSS mode Cisco and/or its affiliates. All rights reserved. Si Up to 6 links in MEC single homed to single switch in VSS mode Cisco Public Catalyst Instant Access - Host Port Connectivity Options Si Si Si Si Host Single Homed End devices to IA Client dual homed to VSS Pair Presentation_ID MEC at IA Ports across Stack Members Cisco and/or its affiliates. All rights reserved. Cisco Public 14 Catalyst Instant Access - Un-Supported Topologies VSS Domain 1 VSS Domain 2 Si Si F102 VSS Mode VSS Mode Si Si F103 F103 F102 Host-1 IA Client can not be connected to two Standalone Switches in VSS Mode Presentation_ID Etherchannel across Multiple FEX IDs is not supported. Cisco and/or its affiliates. All rights reserved. Etherchannel across IA Client and Native Cat6k ports is not supported Cisco Public 15 Instant Access Phase 1 Scalability Maximum Client Switch User Ports 1008 Maximum Client Switch ID’s 12 Maximum Client Switches 21 Maximum Clients in Stack 3 Maximum User Ports in Stack Client Switch ID is a single client or a stack. If using individual clients max of 12 clients supported. In order to reach this number, you must use stacks 144 Sample Configurations # of IDFs # of Ports/IDF # of Clients in a Stack # of Access Ports 7 144 3 1008 10 96 2 960 12 48 0 576 Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Catalyst Instant Access (Phase 1) Stacking Scenario’s Stack of 3 (Phase 1) Max FEX-ID 12 7 Nodes of 144 ports each = 1008 FEX 101 FEX 102 FEX 103 FEX 104 FEX 105 FEX 106 FEX 107 10 Nodes of 96 ports each + 1 Node of 48 port = 1008 FEX 101 FEX 102 FEX 103 Presentation_ID FEX 104 FEX 105 FEX 106 Cisco and/or its affiliates. All rights reserved. FEX 107 FEX 108 Cisco Public FEX 109 FEX 110 FEX 111 17 Catalyst Instant Access (Phase 1) Stacking Scenario’s Stack of 3 (Phase 1) Max FEX-ID 12 12 Nodes of 48 ports each = 576 ports FEX 101 FEX 102 FEX 103 FEX 104 FEX 105 FEX 106 FEX 107 FEX 108 FEX 109 FEX 110 FEX 111 FEX 112 Max 21 Stacks Switches = 1008 ports. FEX 101 FEX 102 Presentation_ID FEX 103 FEX 104 FEX 105 Cisco and/or its affiliates. All rights reserved. FEX 106 FEX 107 FEX 108 Cisco Public FEX 109 18 VNTAG DA[6] SA[6] VNTAG ETHER TYPE (0X8926) D[1] VNTAG[6] P[1] Unicast D=1 Unicast to FEX Host Port Multicast P=1 Pointer to Multicast Table on FEX Client 802.1Q[4] Frame Payload DVIF [12] L[1] R[1] R[1] R[1] Presentation_ID Pointer bit (multicast) SVIF[12] Source VIF Destination VIF Destination bit …. Loopback bit Cisco and/or its affiliates. All rights reserved. Reserved Cisco Public CRC[4] Catalyst Instant Access Interface Naming VSS <Interface-type>/<fex-id>/<module>/<submode>/<port> Si FEX ID 101-199 Stack Sub Module Parent Si FEX Port FEX 102 Client F102/1 F102/2 interface GigabitEthernet 102/1/0/1 IF2 IF1 (VIF1) (VIF2) Host-1 Host-2 Hosts Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Configuring Host Ports • All configuration tasks performed at parent switch • Functionality inherited at IA client ports CFEX1#conf t Enter configuration commands, one per line. End with CNTL/Z. CFEX1(config)#int GigabitEthernet 102/1/0/1 CFEX1(config-if)#switchport CFEX1(config-if)#switchport mode access CFEX1(config-if)#switchport access vlan 2 L2, L3 Features of Cat6k at Access. CFEX1(config-if)#int gig 102/1/0/2 CFEX1(config-if)#ip address 1.1.1.1 255.255.255.0 CFEX1(config-if)#mpls ip MPLS IP at Campus FEX CFEX1(config-if)#int gig 102/1/0/3 CFEX1(config-if)#xconnect 10.10.10.2 100 encapsulation mpls Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public EoMPLS,VPLS or AVPLS from Campus FEX Port Catalyst Instant Access Capabilities Common Access Features IA FCS Support NAC/802.1x/SGT/SGACL Notes *See whitepaper for 802.1x/SGT details Downloadable ACLs VRF assignment QoS (ingress classifier, and egress queuing policy) Ingress classification happens at parent, CoS trusted on fabric link. Static egress Queue policy at client Netflow/Flexible Netflow Data/voice VLANs for IP Phone deployments Private VLANs BPDUGuard Bridge Assurance Edge or Portfast DHCP relay Security features: IP Source Guard, DHCP snooping, DAI etc For more information look into whitepaper and configuration guide at http://www.cisco.com/en/US/prod/collateral/switches/ps10902/ps715/ps13198/white_paper_c11-728265.html http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/15-1SY/config_guide/sup2T/15_1_sy_swcg_2T/instant_access.html#pgfId-1054550 Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Catalyst Instant Access A closer look Catalyst Instant Access “No User Configuration” All Happens in background Instantly Control Plane – Behind the Scene 1 1. Switch Discovery Protocol (SDP) Instant Access Parent • Fabric Link Discovery »switchport mode fex-fabric • Switch Discovery »fex associate <FEX-ID> • EtherChannel Link Aggregation 2 2. Switch Registration Protocol (SRP) • Exchange Compatibility information • IA Client Registration »IA Client image management »IA Client OIR • Stack Member Identification & mgmt 3 3. Switch Configuration Protocol (SCP) • Configuration • Status • Statistics 1 3 Configuration Interface Stats 4 Remote Login Syslog QoS 4 4. Inter Card Communication (ICC) • Syslog, QoS, Remote loginCisco and/or its affiliates. All rights reserved. Presentation_ID Cisco Public 1 2 Client ID Image Check VIF ID Catalyst Instant Access Control Protocols - Reference SDP : Switch Discovery Protocol The first protocol to send Hello’s (keep alive) and establish communication between Parent Switch and Client Switch Is a link based protocol, runs on every link between Parent and IA Client Communicates all attributes to/from each IA Client (Client ID, VIFs, SKU…) SRP : Switch Registration Protocol Completes the OIR and registration of IA Client on a Parent Switch. SCP : Switch Configuration Protocol Configuration and management protocol established between Parent and IA Client Lightweight L2 based protocol. ICC : Inter Card Communication Protocol for heavyweight features running over Cisco IPC Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Catalyst Instant Access Data Plane Components Instant Access Parent Instant Access Parent • IA Control Plane • IA Client VIF association • VNTAG Assignment • IA Data Plane • MAC Learning and Switching • L2 & L3 Features IA Client Switch • VNTAG Encapsulation • QoS Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Local Processing of Remote Ports, How? VSS Ingress Mapping TAG IA Parent FEX Interface VIF1 IF1 VIF2 IF2 (VIF1) Automatically assigned: • One VIF to each host port • One VIF to each Etherchannel • One VIF to FEX CPU for Control Channel (VIF2) F101 Switch-3 IF1 Host-1 IA Client IF2 Host-2 • FEX Controller VIF = 0 • Multicast: Pointer to Replication Table in FEX Hosts TAG: Virtual NIC Tag Presentation_ID Cisco and/or its affiliates. All rights reserved. VIF – Virtual Interface Cisco Public Packet Walk (IA Client to IA Parent) VSS MAC + Payload IA Parent VNTAG SVIF = VIF1 DVIF = 0 MAC + Payload VNTAG SVIF = VIF1 DVIF = 0 MAC + Payload MAC + Payload Presentation_ID Cisco and/or its affiliates. All rights reserved. F101 Switch-3 IA Client IF1 (VIF1) IF2 (VIF2) Host-1 Host-2 Hosts VNTAG: Virtual NIC Tag VIF – Virtual Interface Cisco Public Packet Walk (IA Parent to IA Client) MAC + Payload VSS VNTAG SVIF = 0, DVIF = VIF1 IA Parent MAC + Payload VNTAG SVIF = 0, DVIF = VIF1 MAC + Payload MAC + Payload F101 Switch-3 IA Client IF1 (VIF1) IF2 (VIF2) Host-1 Host-2 Hosts Presentation_ID Cisco and/or its affiliates. All rights reserved. VNTAG: Virtual NIC Tag VIF – Virtual Interface Cisco Public Packet Walk (Host 1 to Host 2) SA=MAC1, DA=MAC2+ Payload SA=MAC1, DA=MAC2+ Payload VSS VNTAG SVIF = VIF1 DVIF = 0 VNTAG SVIF = 0, DVIF = VIF2 SA=MAC1, DA=MAC2+ Payload SA=MAC1, DA=MAC2+ Payload VNTAG SVIF = VIF1 DVIF = 0 SA=MAC1, SA=MAC1,DA=MAC2+ DA=MAC2+Payload Payload F101 Switch-3 IF1 (VIF1) Host-1 MAC1 VNTAG SVIF = 0, DVIF = VIF2 IF2 SA=MAC1, DA=MAC2+ Payload (VIF2) Host-2 MAC2 SA=MAC1, DA=MAC2+ Payload Presentation_ID Cisco and/or its affiliates. All rights reserved. VNTAG: Virtual NIC Tag Cisco Public SA=MAC1, DA=MAC2+ Payload Packet Walk (Multicast) 192.168.1.100, 224.0.255.1 Incoming Interface: FortyGig 5/1 RPF Neighbor 210.20.37.33 Outgoing interface list: Gigabitethernet 101/1/0/1, Forward/Dense, 0:57:31/0:02:52 Gigabitethernet 101/1/0/2, Forward/Dense, 0:56:55/0:01:28 VSS IA Parent MAC + Payload Group VIF VNTAG, P=1 SVIF =0, DVIF = Group VIF MAC + Payload MAC + Payload Outgoing Interface F101 Switch-3 IF1, IA IF2 Client IF1 (VIF1) IF2 (VIF2) Host-1 Host-2 MAC + Payload Hosts Presentation_ID Cisco and/or its affiliates. All rights reserved. VNTAG: Virtual NIC Tag VIF –Public Virtual Cisco Interface Inbound ACL enforcement # access-list 100 permit ip any 10.0.0.0 0.255.255.255 Interface Gig 103/1/0/24 ip access-group 100 in IA Parent Switch-1 Host Switch-2 Fabric Link VSL IA Client Host-1 Switch-3 Si Si # IF1 (VIF1) To -10.1.1.1 To -10.1.1.1 VNTAG To -10.1.1.1 To -172.16.0.1 To -172.16.0.1 VNTAG To -172.16.0.1 ACL TCAM 0X0001 X X X X X X X 0X0002 Y Y Y Y Y Y Y 0XNNNN Z Z Z Z Z Z Z Presentation_ID When an Ingress ACL is applied on the IA Client host port, the packet entering that IA Client port will get to the IA Parent via the fabric link. Once the packet reaches the IA Parent, the relevant ACLs will get applied. Cisco and/or its affiliates. All rights reserved. Cisco Public Outbound ACL enforcement # access-list 101 deny ip 192.168.1.0 0.255.255.255 any Access-list 101 permit ip any any interface Gig 103/1/0/24 ip access-group 101 out IA Parent Switch-1 Host Switch-2 Fabric Link VSL IA Client Host-1 Switch-3 Si Si VNTAG Src -10.1.1.1 Src -10.1.1.1 # IF1 (VIF1) Src -10.1.1.1 Src -192.168.1.1 ACL TCAM 0X0001 X X X X X X X 0X0002 Y Y Y Y Y Y Y 0XNNNN Z Z Z Z Z Z Z Presentation_ID Egress ACLs are applied on the IA Parent and If the packet is to be permitted, the packet will be sent down the fabric link to the IA Client. If the packet is to be dropped, the packet will not be sent to the IA Host Port Cisco and/or its affiliates. All rights reserved. Cisco Public Catalyst Instant Access QoS Summary Traffic from IA Client to Parent Traffic from IA Parent to Client 3 • Classification, Re-marking, Policing on IA host Virtual Interface 3 2 • • • Default DSCP/COS to Queue map – 4 (1P3QT3) Queues shared weights: 1 30 35 5 IA Control traffic on to 2 additional Queues 4 • • • • No Policing/Marking/Shaping on Fabric links (Phase 1) DSCP or COS to Queue Map Queues – 1P7Q4T 6 Queues on Fabric link for IA Client data, 2 Queues for IA control Traffic 4 • • • 4 Egress queues (1P3QT3) shared weights: 1 30 35 5 Control Traffic to IA Queues 2 1 1 • • Trust DSCP at IA Client host ports Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Catalyst Instant Access QoS Ingress IA Client Host Port Over Fabric Link IA Parent IA Client Fabric Link Queues (1P3Q3T) BPDU IA Control Traffic Priority Q (1) Standard Q (2) Data COS 5 Standard Q (3) Data COS 3 Presentation_ID Standard Q (4) Cisco and/or its affiliates. All rights reserved. • • • • • • • Trust DSCP at IA Host Port DSCP/COS to Output Q Map 1 Priority Queue 3 Standard Queue Shared Queue 1 30 35 5 Marking/Re-Marking at IA Parent Policing at IA Parent Cisco Public Catalyst Instant Access QoS Egress IA Parent to IA Client over Fabric Link IA Client IA Parent Fabric Link Queues 1P7Q4T Priority (1) IA Control Traffic BPDU Standard Q (2) Standard Q (3) Trust DSCP/COS Map Table at IA Parent Dscp-outputq-threshold map: DSCP = d1d2 d1/d2: 0 1 2 3 4 5 6 7 8 9 ---------------------------------------------------------------------------------------------0 : 08-03 08-03 07-03 07-03 06-03 06-03 06-03 06-03 05-01 05-02 1 : 05-02 05-02 04-02 04-02 04-02 04-02 03-03 03-03 03-03 03-03 2 : 03-03 03-03 03-03 03-03 02-03 02-03 02-03 02-03 02-03 02-03 3 : 02-03 02-03 03-03 03-03 03-03 03-03 03-03 03-03 03-03 03-03 4 : 01-03 01-03 01-03 01-03 01-03 01-03 01-03 01-03 02-03 02-03 5: 02-03 02-03 02-03 02-03 02-03 02-03 02-03 02-03 02-03 02-03 6 : 02-03 02-03 02-03 02-03 DSCP 40: d1 = 4, d2 = 0 Cisco and/or its affiliates. All rights reserved. DSCP 40 Data DSCP 16 Standard Q (4) Standard Q (5) Standard Q (6) Standard Q (7) DSCP 16: d1 = 1, d2 = 6 Presentation_ID Data Cisco Public Catalyst Instant Access QoS Egress IA Client Host Ports IA Parent IA Client Fabric Link Queues 1P3Q3T Queues 1P7Q4T Priority (1) Standard Q (2) Standard Q (3) Data DSCP 40 Data DSCP 16 Priority (1) Standard Q (2) Standard Q (4) Standard Q (3) Trust DSCP/COS Standard Q (4) 1P3QT3 Egress Host Port Standard Q (5) Shared 1 30 35 5 Standard Q (6) Standard Q (7) Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Instant Access: VSS Dual Active Detection Enhanced SDP (Fabric Link Discovery Protocol) Enhanced PAgP Switch 1 VSS Active • Switch 2 Switch 1 Hot Standby Active VSS Switch 2 Hot Standby Cat6500-VSS#show fex dual-active FEX dual-active detection enabled: Yes Requires ePAgP capable neighbor: • • • 3750: 12.2(46)SE 4500: 12.2(44)SE 6500: 12.2(33)SXH1 • Sub-second convergence Presentation_ID • Requires eSDP Neighbor: Channel Group 16• (FEX 132)6800ia: 15.1(2)SY Catalyst Dual Active detection capable: Yes switch 1 member port state: Te1/2/5 - Interface Up. state: Te1/2/13 Interface Up. state: • Sub-second convergence switch 2 member port state: Te2/2/5 - Interface Up. state: – Satellite Discover Te2/2/13SDP Interface Up. Protocol state: Cisco and/or its affiliates. All rights reserved. Cisco Public bound bound bound bound Catalyst Instant Access Cat6500 VSS Configuration VSS Configurations Guide http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/configuration/guide/vss.html Switch 1 Configuration Switch 2 Configuration redundancy redundancy mode sso mode sso ! ! Si switch virtual domain 100 switch 1 Si Switch 1 Switch 2 ! interface Port-channel1 switch virtual link 1 VSS Verification interface ten 1/5/4 Cat6500-VSS#show switch virtual channel-group 1 mode on interface ten 1/1/1 Switch mode : Virtual Switch channel-group 1 mode on Virtual switch domain number : 100 ! Local switch number :1 =============================== Local switch operational role: Virtual Switch Active switch convert mode virtual Peer switch number switch virtual domain 100 switch 2 ! interface Port-channel2 switch virtual link 2 interface ten 2/5/4 Channel-group 2 mode on interface ten 2/1/1 channel-group 2 mode on ! ============================= switch convert mode virtual :2 Peer switch operational role : Virtual Switch Standby Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Catalyst Instant Access Provisioning Automatic Discovery of IA Client Step 1 interface Port-channel20 switchport switchport mode fex-fabric Si fex associate 118 Si Step 2 interface range TenGig1/2/5, TenGig2/2/5 switchport channel-group 20 mode on The Discovery process starts automatically once the FEX-Fabric is configured on downlinks to IA Client Presentation_ID Cisco and/or its affiliates. All rights reserved. No Console Access Required to Instant Access Client Provisioning Cisco Public Catalyst Instant Access Provisioning Automatic Discovery and Provisioning of IA Client Cat6500-VSS#show fex 118 detail FEX: 118 Description: FEX0118 state: online FEX version: 15.0(2.0.51)UCP Extender Model: WS-C2960X-48FPD-L, Extender Serial: FHH1707P00S FCP ready: yes Image Version Check: overridden Fabric Portchannel Ports: 2 Fabric port for control traffic: Te1/2/5 Fabric interface state: Po20 - Interface Up. Te1/2/5 - Interface Up. state: bound Te2/2/5 - Interface Up. state: bound Cat6500-VSS#show run fex 118 Current configuration : 11123 bytes ! interface GigabitEthernet118/1/0/1 … Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Si Si Catalyst Instant Access Provisioning Pre-Provisioning of IA Client Pre-Provisioning Switch and host port configuration before the IA Switch is physically connected can be done very similar to a line card Pre Provisioning Pre-Provisioning of IA Client Cat6500-VSS#mod provision create fex 121 type C6800IA-48FPD FEX 121 slot 1 module provisioning entry added. Pre-Provisioning a Stack Member to Existing FEX-ID Si Cat6500-VSS#mod provision create fex 121 type C6800IA-48FPD slot 2 FEX 121 slot 2 module provisioning entry added. Cat6500-VSS#show switch virtual slot-map Virtual Slot to Remote Switch/Physical Slot Mapping Table: Virtual Remote Physical Module Slot No Switch No Slot No Uptime ---------+-----------+----------+---------68 121 1 69 121 2 Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public Si Catalyst Instant Access Provisioning Pre Provisioning of Host Port Configuration Once the FEX-ID is provisioned, the Host Port Interface can be configured like any regular interface in Cat6500 Cat6500-VSS#show run fex 121 Building configuration... Current configuration : 5564 bytes ! interface GigabitEthernet121/1/0/1 switchport mode access ..... Si Pre Provision any IA Client Host Port like a regular port ahead. FEX 121 Cat6500-VSS# conf t Enter configuration commands, one per line. End with CNTL/Z. Cat6500-VSS(config)# int Gig 121/1/0/24 Cat6500-VSS(config-if)# description To Printer Bldg3,4th Floor. Cat6500-VSS(config-if)# switchport access vlan 110 Presentation_ID Cisco and/or its affiliates. All rights reserved. Si Cisco Public Catalyst Instant Access Provisioning Simplicity of adding a Stack Member – Plug and Play Cat6500-VSS# show mod fex 118 Switch Number: 118 Role: FEX ---------------------- ----------------------------Mod Ports Card Type Model Serial No. ------ ------------------------------------------ ---------------------------1 48 C6800IA 48GFPwr 2SFP Fullers_48FullPwr FHH1707P00S Si Cat6500-VSS# *Apr 3 19:37:58.026: %SATMGR-SW1-5-FEX_MODULE_ONLINE: FEX 118, module 2 online Cat6500-VSS# *Apr 3 19:37:58.030: %OIR-SW1-6-INSREM: Switch 118 Physical Slot 2 - Module Type LINE_CARD inserted Fex 118 Module 2: Passed Online Diagnostics *Apr 3 19:38:12.178: %OIR-SW1-6-SP_INSCARD: Card inserted in Switch_number = 118, physical slot 2, interfaces are now online Cat6500-VSS# show mod fex 118 Switch Number: 118 Role: FEX ---------------------- ----------------------------Mod Ports Card Type Model Serial No. --- --------------------------------------------------------------------1 48 C6800IA 48GFPwr 2SFP Fullers_48FullPwr FHH1707P00S 2 48 C6800IA 48GFPwr 2SFP Fullers_48FullPwr FHH1707P010 Presentation_ID Cisco and/or its affiliates. All rights reserved. Stack Member automatically Discovered and associated to FEX like a Line Card Cisco Public Si Catalyst Instant Access Provisioning Simplicity of Adding Additional Uplinks Cat6500-VSS#show fex 118 detail FEX: 118 Description: FEX0118 state: online <Snip>… Fabric Portchannel Ports: 2 Fabric port for control traffic: Te1/2/5 Fabric interface state: Po20 - Interface Up. Te1/2/5 - Interface Up. state: bound Te2/2/5 - Interface Up. state: bound Si Cat6500-VSS(config)#int range TenGig1/2/13, TenGig2/2/13 Cat6500-VSS(config-if-range)#channel-group 20 mode on Cat6500-VSS#show fex 118 detail FEX: 118 Description: FEX0118 state: online <Snip>… Fabric Portchannel Ports: 4 Fabric port for control traffic: Te1/2/5 Fabric interface state: Po20 - Interface Up. Te1/2/5 - Interface Up. state: bound Te1/2/13 - Interface Up. state: bound Te2/2/5 - Interface Up. state: bound Te2/2/13 - Interface Up. state: bound Presentation_ID Cisco and/or its affiliates. All rights reserved. Just Bundling to “fex-fabric” Port Channel on Parent, No Configuration at IA Client Cisco Public Si CLI Look and Feel Configuration Ease Interface range command Cat6500-VSS(config)#int range Gig 132/1/0/1-48, Gig132/2/0/1-48 Cat6500-VSS(config-if-range)# Show run for IA Client Cat6500-VSS#show run fex 132 Building configuration... Current configuration : 11103 bytes ! interface GigabitEthernet132/1/0/1 switchport access vlan 10 ! interface GigabitEthernet132/1/0/2 switchport access vlan 10 Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public CLI Look and Feel Verification and Troubleshooting Cat6500-VSS#show module fex Switch Number: 132 Role: FEX ---------------------------------------------------------------------------------Mod Ports Card Type Model Serial No. ---------------------------------------------------------------------------------1 48 C6800IA 48GFPwr 2SFP Fullers_48FullPwr FHH1707P00S 2 48 C6800IA 48GFPwr 2SFP Fullers_48FullPwr FHH1707P010 Cat6500-VSS#show environment status fex all Fex 132 Fan 1 FEX 132 Fan 1 type: 33-0752-01 FEX 132 Fan 1 mode: Auto Fex 132 fan-tray 1 fan-fail: OK Fex 132 Fan 2 FEX 132 Fan 2 type: 33-0752-01 FEX 132 Fan 2 mode: Auto Fex 132 fan-tray 2 fan-fail: OK FEX 132 module 1 cooling requirement: 84 cfm FEX 132 module 2 cooling requirement: 84 cfm Fex 132 module 1 outlet temperature: 45C Fex 132 module 2 outlet temperature: 52C Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public CLI Look and Feel Troubleshooting Fabric UpLinks from IA Client To troubleshoot on IA Client Uplink - interface stats, transceiver details Cat6500-VSS#attach fex 132 Attach to IA Client “attach <fex-id>” Open FEX-132# FEX-132#show int tenGigabitEthernet 1/0/1 TenGigabitEthernet1/0/1 is up, line protocol is up (connected) Hardware is Ten Gigabit Ethernet, address is 0022.bdf4.6633 (bia 0022.bdf4.6633) MTU 9198 bytes, BW 10000000 Kbit/sec, DLY 10 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation ARPA, loopback not set Keepalive not set Full-duplex, 10Gb/s, link type is auto, media type is SFP-10GBase-SR input flow-control is off, output flow-control is unsupported ARP type: ARPA, ARP Timeout 04:00:00 Last input never, output never, output hang never Last clearing of "show interface" counters never Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 Queueing strategy: fifo Output queue: 0/40 (size/max) 5 minute input rate 4000 bits/sec, 3 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 13031 packets input, 2591153 bytes, 0 no buffer Presentation_ID Cisco and/or its affiliates. All rights reserved. Cisco Public CLI Look and Feel Troubleshooting Fabric Up Links from IA FEX-132#show int ten 1/0/2 transceiver ITU Channel not available (Wavelength not available), Transceiver is internally calibrated. If device is externally calibrated, only calibrated values are printed. ++ : high alarm, + : high warning, - : low warning, -- : low alarm. NA or N/A: not applicable, Tx: transmit, Rx: receive. mA: milliamperes, dBm: decibels (milliwatts). Port ---------Te1/0/2 Temperature (Celsius) --------------40.7 Presentation_ID Voltage (Volts) --------3.32 Optical Tx Power (dBm) ------------2.0 Cisco and/or its affiliates. All rights reserved. Optical Rx Power (dBm) --------------1.1 Cisco Public A = Active S=Standby LC=Line Card Catalyst Instant Access EFSU A S LC1 LC1 LC2 LC3 101 A S LC1 LC1 LC2 LC2 LC2 LC3 LC3 LC3 F 102 F 103 S A LC1 LC1 LC2 LC3 F 101 F 102 issu load version F 101 issu commit version F 102 F 103 LC1 LC2 LC2 LC3 LC3 F 101 F 102 LC2 LC2 LC2 LC3 LC3 LC3 LC2 LC2 LC3 LC3 issu accept version F 101 F 102 S A LC1 LC1 LC2 LC2 LC3 LC3 F 101 F 102 F 103 issu run version fex 102, 101 F 103 F 103 Cisco and/or its affiliates. All rights reserved. New Code issu run version fex 103 F 103 LC1 LC1 Presentation_ID LC1 LC1 LC1 F 102 A A A F 101 S S S F 103 issu run version Old Code Cisco Public Rolling upgrade across FEX-ID’s Summary Cisco Catalyst Instant Access Key Takeaways • Single point of management & simplified configuration and deployment and operations reducing TCO • Consistent features across distribution and access • Unified application visibility and control for complete distribution block • Simplified network virtualization with EVN/MPLS-VRF at access • Simplified network security with complete support of SGT/SGACL/NDAC/802.1x across distribution block • Maintain existing L2//L3 Designs, Smooth Migration Simplifying Networks Presentation_ID Cisco and/or its affiliates. All rights reserved. Reducing TCO Cisco Public Prosíme, ohodnoťte tuto přednášku • Děkujeme
© Copyright 2026 Paperzz