You are previewing NX-OS and Cisco Nexus Switching: Next-Generation Data Center Architectures, Second Edition.
O'Reilly logo
NX-OS and Cisco Nexus Switching: Next-Generation Data Center Architectures, Second Edition

Book Description

NX-OS and Cisco Nexus Switching

Next-Generation Data Center Architectures

Second Edition

The complete guide to planning, configuring, managing, and troubleshooting NX-OS in the enterprise–updated with new technologies and examples

Using Cisco Nexus switches and the NX-OS operating system, data center professionals can build unified core networks that deliver unprecedented scalability, resilience, operational continuity, flexibility, and performance. NX-OS and Cisco Nexus Switching, Second Edition, is the definitive guide to applying these breakthrough technologies in real-world environments. This extensively updated edition contains five new chapters addressing a wide range of new technologies, including FabricPath, OTV, IPv6, QoS, VSG, Multi-Hop FCoE, LISP, MPLS, Layer 3 on Nexus 5000, and Config sync. It also presents a start-to-finish, step-by-step case study of an enterprise customer who migrated from Cisco Catalyst to a Nexus-based architecture, illuminated with insights that are applicable in virtually any enterprise data center. Drawing on decades of experience with enterprise customers, the authors cover every facet of deploying, configuring, operating, and troubleshooting NX-OS in today’s data center. You’ll find updated best practices for high availability, virtualization, security,
L2/L3 protocol and network support, multicast, serviceability, provision of networking and storage services, and more. Best of all, the authors present all the proven commands, sample configurations, and tips you need to apply these best practices in your data center.

Ron Fuller, CCIE No. 5851 (Routing and Switching/Storage Networking), Technical Marketing Engineer on Cisco’s Nexus 7000 team, specializes in helping customers design end-to-end data center architectures. Ron has 21 years of industry experience, including 7 at Cisco. He has spoken at Cisco Live on VDCs, NX-OS multicast, and general design.

David Jansen, CCIE No. 5952 (Routing/Switching), is a Cisco Technical Solutions Architect specializing in enterprise data center architecture. He has 20 years of industry experience, 15 of them at Cisco (6 as a solution architect); and has delivered several Cisco Live presentations on NX-OS and data center solutions.

Matthew McPherson, senior systems engineer and solutions architect for the Cisco Central Select Operation, specializes in data center architectures. He has 12 years of experience working with service providers and large finance and manufacturing enterprises, and possesses deep technical knowledge of routing, switching, and security.

  • Understand the NX-OS command line, virtualization features, and file system

  • Utilize the NX-OS comprehensive Layer 2/Layer 3 support: vPC, Spanning Tree Protocol, Cisco FabricPath, EIGRP, OSPF, BGP, HSRP, GLBP, and VRRP

  • Configure IP multicast with PIM, Auto-RP, and MSDP

  • Secure your network with CTS, SGTs, ACLs, CoPP, and DAI

  • Establish a trusted set of network devices with Cisco TrustSec

  • Maximize availability with ISSU, stateful process restart/switchover, and non-stop forwarding

  • Improve serviceability with SPAN, ERSPAN, configuration checkpoints/rollback, packet analysis, Smart Call Home, Python, and PoAP

  • Unify storage and Ethernet fabrics with FCoE, NPV, and NPIV

  • Take full advantage of Nexus 1000V in a virtualized environment

  • Achieve superior QoS with MQ CLI, queuing, and marking

  • Extend L2 networks across L3 infrastructure with Overlay Transport Virtualization (OTV)

  • Deliver on SLAs by integrating MPLS application components such as L3 VPNs, traffic engineering, QoS, and mVPN

  • Support mobility via the new Locator ID Separation Protocol (LISP)

  • Walk step-by-step through a realistic Nexus and NX-OS data center migration

  • Table of Contents

    1. Title Page
    2. Copyright Page
    3. About the Authors
    4. About the Technical Reviewers
    5. Dedications
    6. Acknowledgments
    7. Contents at a Glance
    8. Contents
    9. Icons Used in This Book
    10. Command Syntax Conventions
    11. Foreword
    12. Introduction
      1. Goals and Methods
      2. Who Should Read This Book?
      3. How This Book Is Organized
    13. Chapter 1. Introduction to Cisco NX-OS
      1. NX-OS Overview
      2. NX-OS User Modes
      3. Management Interfaces
      4. Managing System Files
      5. Virtual Device Contexts
      6. Troubleshooting
      7. Topology
      8. Further Reading
    14. Chapter 2. Layer 2 Support and Configurations
      1. Layer 2 Overview
      2. VLANs
      3. Private VLANs
      4. Spanning Tree Protocol
      5. Port-Channels
      6. Virtual Port Channels
      7. Unidirectional Link Detection
      8. Cisco FabricPath
      9. Summary
    15. Chapter 3. Layer 3 Support and Configurations
      1. EIGRP
      2. OSPF
      3. IS-IS
      4. BGP
      5. First Hop Redundancy Protocols
      6. Summary
    16. Chapter 4. IP Multicast Configuration
      1. Multicast Operation
      2. PIM Configuration on Nexus 7000 and Nexus 5500
      3. IGMP Operation
      4. IGMP Configuration on Nexus 7000
      5. IGMP Configuration on Nexus 5000
      6. IGMP Configuration on Nexus 1000V
      7. MSDP Configuration on Nexus 7000
      8. Administrative Scoping of Multicast RPs in PIM
      9. Configuring PIM Join and Prune Policies
      10. Multicast and Control Plane Policing (CoPP)
      11. Summary
    17. Chapter 5. Security
      1. Configuring RADIUS
      2. Configuring TACACS+
      3. Configuring SSH
      4. Cisco TrustSec
      5. Configuring Cisco TrustSec: IEEE 802.1AE LinkSec
      6. Configuring IP ACLs
      7. Configuring MAC ACLs
      8. Configuring VLAN ACLs
      9. Configuring Port Security
      10. Configuring DHCP Snooping
      11. Configuring Dynamic ARP Inspection
      12. Configuring IP Source Guard
      13. Configuring Keychain Management
      14. Configuring Traffic Storm Control
      15. Configuring Unicast RPF
      16. Configuring Control Plane Policing
      17. Configuring Rate Limits
      18. SNMPv3
      19. Summary
    18. Chapter 6. High Availability
      1. Physical Redundancy
      2. Generic Online Diagnostics
      3. NX-OS High-Availability Architecture
      4. Process Modularity
      5. Process Restart
      6. Stateful Switchover
      7. Nonstop Forwarding
      8. In-Service Software Upgrades
      9. Summary
    19. Chapter 7. Embedded Serviceability Features
      1. SPAN
      2. ERSPAN on Nexus 1000V
      3. ERSPAN on Nexus 7000
      4. ERSPAN on Nexus 5x00
      5. Embedded Analyzer
      6. Smart Call Home
      7. Configuration Checkpoint and Rollback on Nexus 7000
      8. Configuration Checkpoint and Rollback on Nexus 5x00
      9. NetFlow
      10. Network Time Protocol
      11. Precision Time Protocol
      12. IEEE 802.3az (Energy Efficient Ethernet)
      13. Power On Auto-Provisioning
      14. Python
      15. Summary
    20. Chapter 8. Unified Fabric
      1. Unified Fabric Overview
      2. Enabling Technologies
      3. N-Port Virtualization
      4. Nexus 5x00 Unified Fabric Configuration
      5. Nexus 7000 Unified Fabric Configuration
      6. Summary
    21. Chapter 9. Nexus 1000V
      1. Hypervisor and vSphere Introduction
      2. Nexus 1000V System Overview
      3. Nexus 1000V Switching Overview
      4. Nexus 1000V VSM Installation
      5. 1000V Port Profiles
      6. Virtual Network Management Center
      7. Virtual Security Gateway
      8. Install Virtual Security Gateway on the Nexus 1010
      9. Virtual Extensible LAN
      10. Nexus 1000v Network Analysis Module
      11. Summary
    22. Chapter 10. Quality of Service (QoS)
      1. QoS on Nexus 7000
      2. QoS on Nexus 5x00
      3. QoS on Nexus 1000V
      4. Summary
    23. Chapter 11. Overlay Transport Virtualization (OTV)
      1. OTV Terminology and Concepts
      2. OTV Control Plane
      3. Multicast-Enabled Transport Infrastructure
      4. Unicast-Enabled Transport Infrastructure
      5. OTV Data-Plane
      6. Data-Plane Multicast Traffic
      7. OTV and QoS
      8. Failure Isolation
      9. Multihoming with OTV
      10. First-Hop Routing Protocol Localization
      11. Inbound Path Optimization
      12. Summary
    24. Chapter 12. Layer 3 Virtualization and Multiprotocol Label Switching (MPLS)
      1. Virtual Routing and Forwarding
      2. MPLS Introduction
      3. Nexus Hardware Requirements and NX-OS Licensing for MPLS and VRF
      4. Summary
    25. Chapter 13. LISP
      1. LISP Overview
      2. LISP Terminology
      3. LISP Prerequisites
      4. LISP Control Plane
      5. LISP Data Plane
      6. Communicating Between LISP and non-LISP Sites
      7. LISP Host Mobility with an Extended Subnet Mode
      8. LISP Deployment Best Practices
      9. Summary
    26. Chapter 14. Nexus Migration Case Study
      1. Existing Environment
      2. Design Goals
      3. The Design
      4. Migration Plan
      5. Premigration Steps
      6. Maintenance Window #1
      7. Maintenance Window #1 Summary
      8. Maintenance Window #2
      9. Ongoing Maintenance Windows
      10. Summary
    27. Index
    28. Ad Pages