Cisco nexus 7009 overview

Cisco Nexus 7009 switch

Eng.Hamza Al-Qudah
9-10-2012

Presentation_ID © 2006 Cisco Systems, Inc. All rights reserved. 1

Agenda

 Day 1 :
 Introducing Cisco Nexus Family
 The Nexus switches family range
 Nexus VS 65XX
 The Cisco Nexus 7000 Series
 Nexus 7000 Hw specifications
 Nexus 7009 specifications
 Day 2 :
 XOS vs IOS

Introducing Cisco Nexus Family:

 Nexus is a modular network switch introduced on
January 28, 2008
 Designed for the data center (optimized for high-
density 10 Gigabit Ethernet.)
 Its throughput is beyond 15 Tbps.
 It has a modular NX-OS firmware/operating system


The Nexus switches family range:

- Nexus 1000v virtual switch

- Nexus 2000 fabric extender

- Nexus 3000 series

- Nexus 4000 IBM Blade Center switch

- Nexus 5000 series

- Nexus 7000 series modular datacenter switches


The Cisco Nexus 7000 Series

 The Cisco Nexus 7000 Series was designed around
three principles:
1- Infrastructure scalability: Virtualization, efficient
power and cooling, high density, and performance
all support efficient data center infrastructure
growth.

2-Operational continuity: The Cisco Nexus design
integrates hardware, NX-OS software features, and
management to support zero-downtime
environments.


3-Transport flexibility: You can incrementally and
cost-effectively adopt new networking innovations
and technologies, such as:

Cisco Overlay Transport Virtualization (OTV)
Cisco FabricPath
Fibrer Channel over Ethernet (FCoE)
Cisco IOS Multiprotocol Label Switching (MPLS)


Over 1513 Patents Over $1B in Overall Data
Pending/Issued on Data Center Research
Center Technologies Transport and Development
Flexibility

Cisco® Nexus Cisco Nexus Consists
Delivers a Unified of Multiple Products
Fabric and I/O for Cisco with a Data Center
the DC Nexus Class OS

Operational Infrastructure
Continuity Scalability


Nexus VS 65XX :

- Virtual port channel (VPC) : VPC is similar to VSS of the
65K's.

- Virtual device context (VDC) :
With VDC you virtually divide your switch up to 4
different virtual switches and allocate hardware resources
to them

- 65K's can perform all the functions... Nexus still doesn't
support service modules like FWSM, load balancers etc...


Cisco Overlay Transport Virtualization (OTV):

- It makes multiple DC as one Dc.
- The NX7k switch has MAC add table for each NX7k switch
- The MAC add tables are automatically shared
- It stops spanning tree protocol
- In multicast : Just one copy sent to the core

Cisco FabricPath :
- Combines the simplicity of L2 domain with scalability of L3
domain , Creates (L2 routing tables)
- No blocking , send through all links, down link will be excluded.
- Shortest path will be used

- Add fabricpath Switch destination header
- Add server any where in the dc


Fiber Channel over Ethernet (FCoE) :

- Allow the server to connect to the San and the LAN through one
link

Hitless software upgrade by :

- In Service Software Upgrade (ISSU)

Cisco Data Center Network Manager:

- Management tool


Nexus 7000 Hw specifications :

- Delivers high-density 10, 40, and 100 Gigabit
Ethernet

- provide parallel fabric channels to each I/O and
supervisor module slot

- Up to five simultaneously active fabric modules
work together delivering up to 230 Gbps per slot
46 Gbps per slot per fabric ( 46*5 fabric = 230 Gbps
per slot )
- 46 is for fabric 1 , in fabric 2 its 110 per slot
- With 550G per slot, scales to more than 17 Tbps
switching capacity

Catalyst and Nexus:
Complementary Focus for Broad Deployments
Cisco® Nexus 7000
15 Terabit Scalability
100GbE
Unified Fabric

40GbE

Transport Flexibility

Operational Continuity

Cisco Catalyst® 6500
10GbE
2 Terabit Scalability
1GbE Unified Network Access


New Nexus 7000 Supervisor Engines :

- Cisco Nexus 7000 Series Supervisor 2 and 2E
Modules deliver increased control plane
performance and system scalability

- Cisco Nexus 7000 Series Supervisor 2 has twice
the CPU performance of the Supervisor 1 Module

- Cisco Nexus 7000 Series Supervisor 2E
performance is Four times the CPU performance of
the Supervisor 1 Module


Nexus 7000 series :

 Nexus 7000 chassis now includes 9, 10 and 18 slot
chassis

 New Innovation Cisco Nexus 7004 Chassis

 As with the Nexus 5000 series the Nexus 2000
Fabric Extenders can act as a remote line card on
the 7000 series.


Extending the Cisco Nexus Family
Data Center Class Switches

Continuity
Operational
 Simpler More Stable Layer 2 Network
 Highly Available Platform
 Preserves operational best practices

Flexibility
Transport
 FCoE based Unified Fabric
 Virtualization Optimized Networking
 Support for GE, FCoE, DCE, and FC

Scalability
Infrastructure
 Reduces power, cooling, cabling
 Up to 52 non-blocking 10GbE
 Up to 1.2 Tbps capacity


Nexus 7009 :

 9 slots: 3-9 are line card slots, 1-2 are supervisor
slots
 Supports 336 10Gbit/s and/or 1Gbit/s
 Air flow is side to side (right to left)
 Up to 5 Crossbar Fabric Modules
 Up to 2 power supplies


Day 2:

IOS VS XOS


NX-OS :

- NX-OS two images kickstart image and system
image.

- Not all the features are enabled by default... for
example if you want to use OSPF... you firstly have
to enable the feature. ... (feature ospf)

- All the features are licensed... This is not very bad...
considering that an enterprise licenses gets almost
all of your features running.


 You don't have to prefix "do" in front of your "privilege
level show commands" if you are in configuration
mode
 The routing protocol configuration is more on the
interface level like in IPV6... ipv6 enable
 NX-OS CANNOT NAT"; no NAT command on NX-OS...
unusual as it is one of the common L3 feature on any
cisco device.
 No F and GE in the commands … all are Ethernet
 There aren't any speed designations in the interface name.


 no "write" command you have to use the big old
"copy run start“
 The " sh tech-support" gives you never ending
data... its HUGE MB's of data
 Supports VTP only in transparent mode
 - Doesn't support PAGP supports only LACP
 - It doesn't support EIGRP unicast neighborship...
 The "sh run" has a lot of minor components which
makes it easier to look at the configuration... like
"sh run rpm"(route processor module) : gives you
all the route policy config like route-maps and
prefix lists

sh module :
N7K-ABCDEF-GH

 A : F (forwarding engine) or M (Multi purpose
forwarding engine )
 B : Model of forwarding engine : 1 or 2
 C & D : Number of ports
 E : Speed : X (10 gig ) or G (1 gig)
 F : Connector Type : P (sfp+) or T ( RJ )
 G : Generation of fabric : 1 ( 1’st ) or 2 (2 nd)
 H : Number of channels of 40 gig : 1 (40 gig) or 2
(80 gig)
 show module xbar : to show switch fabric

Day 3:

Continue IOS VS XOS


 Base services: The default license that ships with
NX-OS covers Layer 2 protocols including such
features such as Spanning Tree, virtual LANs
(VLAN), Private VLANS, and Unidirectional Link
Detection (UDLD).
 Enterprise Services Package: Provides Layer 3
protocols such as Open Shortest Path First (OSPF),
Border Gateway Protocol (BGP), Intermediate
System-to-Intermediate System (ISIS), Enhanced
Interior Gateway Routing Protocol (EIGRP), Policy-
Based Routing (PBR), Protocol Independent
Multicast (PIM), and Generic Routing Encapsulation
(GRE).
 Advanced Services Package: Provides Virtual
Device Contexts (VDC)

 license file is obtained from Cisco.com and copied
to flash, install it on the chassis.

 Show license host-id :host-id for License File
Creation on Cisco.com (serial number)
 Install license bootflash:license_file.lic
 NX-OS offers feature testing for a 120-day grace
period ...fully operate a feature without the need for
a license to be purchased
 The last 6 days it will start send notifications
 #()license grace-period


 NX-OS has a setup utility that enables a user to
specify the system defaults, perform basic
configuration, and apply a predefined Control Plane
Policing (CoPP) security policy.
 Two preconfigured instances of VPN Routing
Forwarding (VRF) by default (management, default).
 By default, all Layer 3 interfaces and routing
protocols exist in the default VRF.
 The mgmt0 interface exists in the management VRF
and is accessible from any VDC.
 Each VDC has a unique IP address for the mgmt0
interface.


 Default login administrator user is admin; a
password has to be specified when the system is
first powered up.
 you cannot disable the username and password
login.

 The default Spanning Tree mode in NX-OS is Rapid-
PVST+.
 When u disable a feature all relevant commands are
removed from the running configuration.


 Show environment power :
power requested in the max appear cisco power
calc
 Telnet is disabled by def , ssh is enabled
 Sh vrf :
 vrf managment : def route
 vrf context managment ip route 0.0.0.0 /0 gw
 int mgmt 0 ip add /24 def in mgmt vrf dedicated for
it
 Sh vrf managment int
 Int ethe x/x :
vrf member managmenet ...refused

 ping gw ..no u have to determine vrf
 sh run | grep -a 3 –n mgmt 0 :
 rollbased access control : rback
 sh role : admin : read write operator : read
 sh role feature-group
 feature group ...ex pre def l3 feature group


 role name ...
 rule 1 permit read
 rule 2 permit read-write feature cdp
 rule 3 permit command ping *
 rule 4 permit command config t : interface *
 interface policy deny
permit interface eth 2/1
 sh role name ....
 user ... pass ... role ....


 ? the available commands will be limited
 debug ? only cdp ( write allowd for cdp only)
 ? In config mode :cdp or interface ( interface only
eth 2/1 )


 rollback :
 checkpoint .... ( up to 10)
 sh checkpoint summary
 sh checkpoint ... : the config of checkpoint
 rollback running-config checkpoint ...
 config s (session) : till now just for acl
 To check the resource availability for a certain
feature
 config s ...
 verify
 show config session
 Commit , abort

 -if : ip ospf hello-interval 2
 ip ospf network point-to-point
 ip router ospf 1 area 0 : activate osfp in interface
 statefull process restart : l2 process and ospf :
safe the processes
 int .. : sh no sh
 load bootflash:dd.plgin
 (linux) kill 6255 sh process | inc ospf
 int e2/1, 2/2-4


 netflow :
 feature nerflow
 flow record ....
 match ipv4 dest add
 matc ipv4 souse add
 match ip protocol
 collect transport tcp flags ( collect is the info need
to be exported)
 collect routing forwarding-status
 flow exporter ....
 description ....
 destination x.x.x.x vrf

 source loobback 0
 transport udp port 12345
 version 5
 Now apply netflow for interface by config flow
monitor with connect exporter with recored
 flow monitor ...
record ....
exporter ... up to 2 diff export per monitor
 sh run config netflow
 int .. : ip flow monitor ... input (igress)
 sh sys internal flow

 Ethenizer for wire shark
 Ethanalyzer local interface (mgmt or input ) brief
limit-captured-frame 5 write bootflash:cap1
 Its for control plane traffic
 Data plane traffic captured by netflow or span


 vdc :
 sh vdc
 n7k : def
 sh vdc membership :( interfaces )
 vdc ... create vdc
 allocate interface x : config will be lost

 ha-policy (dual-sup (bring-down or restart or
switchover)
 single sup) bring-down or restart or reload :
reload : the sup restart : restart the vdc


 limit resources vrf min x max y
 limit resources vlan min x max y
 limit resources port-channel min0 max 0

 sh vdc ... detail
 sh vdc ... membership
 sh vdc ...resources

 switch to vdc ...
 password : create one


The End

Hamza Al-Qudah


Cisco nexus 7009 overview

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Viewers also liked

Viewers also liked (10)

Similar to Cisco nexus 7009 overview

Similar to Cisco nexus 7009 overview (20)

Recently uploaded

Recently uploaded (20)

Cisco nexus 7009 overview