Page 1 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x First Published: 2013-05-13 Last Modified: 2016-05-31 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883...
Page 2 Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks . Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company.
Page 3: Table Of Contents
Configuring PTP Configuring PTP Globally Configuring PTP on an Interface Configuring Multiple PTP Domains Configuring PTP Grandmaster Clock Configuring PTP Cost Interface Configuring clock Identity Verifying the PTP Configuration Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 4 Configuration Example for Session Manager Verifying the Session Manager Configuration Configuring the Scheduler C H A P T E R 6 Information About the Scheduler Remote User Authentication Scheduler Log Files Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 5 Default Settings for Online Diagnostics Configuring NTP C H A P T E R 8 Information About NTP NTP as a Time Server Distributing NTP Using CFS Clock Manager Virtualization Support Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 6 Configuring Module and Facility Messages Logging Configuring Logging Timestamps Configuring Syslog Servers Configuring syslog on a UNIX or Linux System Configuring syslog Server Configuration Distribution Displaying and Clearing Log Files Configuring DOM Logging Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 7 Sample Syslog Alert Notification in XML Format Configuring Rollback C H A P T E R 1 1 Information About Rollbacks Guidelines and Limitations for Rollbacks Creating a Checkpoint Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 8 Creating SNMP Communities Filtering SNMP Requests Configuring SNMP Notification Receivers Configuring SNMP Notification Receivers with VRFs Filtering SNMP Notifications Based on a VRF Configuring SNMP for Inband Access Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x viii...
Page 9 Guidelines and Limitations for SPAN and ERSPAN Sampling SPAN and ERSPAN Truncation Guidelines and Limitations for SPAN and ERSPAN Truncation Creating or Deleting a SPAN Session Configuring an Ethernet Destination Port Configuring Source Ports Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 10 Default Settings for ERSPAN Configuring ERSPAN Configuring an ERSPAN Source Session Configuring an ERSPAN Destination Session Shutting Down or Activating an ERSPAN Session Configuring ERSPAN Filtering Configuring ERSPAN Sampling Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 11 C H A P T E R 2 0 Information About Warp Mode Guidelines and Limitations for Warp Mode Enabling and Disabling Warp Mode Verifying Warp Mode Status Feature History for Warp Mode Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 12 Contents Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 13: Preface
Document Conventions, page xiii • Documentation Feedback, page xv Audience This publication is for network administrators who configure and maintain Cisco Nexus devices. Document Conventions As part of our constant endeavor to remodel our documents to meet our customers' requirements, we have Note modified the manner in which we document configuration tasks.
Page 14 Means reader take note. Notes contain helpful suggestions or references to material not covered in the manual. Caution Means reader be careful. In this situation, you might do something that could result in equipment damage or loss of data. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 15: Documentation Feedback
Preface Documentation Feedback Documentation Feedback To provide technical feedback on this document, or to report an error or omission, please send your comments to: . We appreciate your feedback. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 16 Preface Documentation Feedback Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 17: New And Changed Information
Added support for DOM logging. 6.0(2)A8(1) Enabling DOM Logging, on page 79 Software Maintenance Added support for performing Software 6.0(2)A7(2) About SMUs, on page Upgrades (SMUs) Maintenance Upgrades (SMUs). Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 18 ERSPAN timestamp. Configuring ERSPAN This feature was introduced. 6.0(2)A1(1) Configuring ERSPAN, on page Configuring PTP This feature was introduced. 6.0(2)A1(1) Configuring PTP, on page 7 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 19: Overview
Session Manager Session Manager allows you to create a configuration and apply it in batch mode after the configuration is reviewed and verified for accuracy and completeness. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 20 SNMP managers and agents. SNMP provides a standardized framework and a common language used for the monitoring and management of devices in a network. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 21 (sometimes called port mirroring or port monitoring) selects network traffic for analysis by a network analyzer. The network analyzer can be a Cisco SwitchProbe, a Fibre Channel Analyzer, or other Remote Monitoring (RMON) probes. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 22 Overview System Management Features Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 23: Configuring Ptp
PTP operates within a logical scope called a PTP domain. Starting from Cisco NXOS Release 6.0(2)A8(3), PTP supports configuring multiple PTP clocking domains, PTP grandmaster capability, PTP cost on interfaces for slave and passive election, and clock identity.
Page 24: Ptp Device Types
MAC address. The clock identity is determined from MAC according to the IEEE1588v2-2008 specifications. The clock ID is a combination of bytes in a VLAN MAC address as defined in IEEE1588v2. Only Cisco Nexus 3000 Series switches support PTP. Cisco Nexus 3100 Series switches do not support this feature.
Page 25: Ptp Process
• The master receives the delay-request message and notes the time it was received. • The master sends a delay-response message to the slave. The number of delay request messages should be equal to the number of delay response messages. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 26: High Availability For Ptp
Guidelines and Limitations for PTP • In a Cisco Nexus 3500 only environment, PTP clock correction is expected to be in the 1- to 2-digit range, from 1 to 99 nanoseconds. However, in a mixed environment, PTP clock correction is expected to be up to 3 digits, from 100 to 999 nanoseconds.
Page 27: Configuring Ptp
# [no] ptp (Optional) domain number Configures the domain number to use for this clock. PTP domains allow you to use multiple independent PTP clocking subdomains on a single network. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 28 Accuracy : 254 Offset (log variance) : 65535 Offset From Master : 0 Mean Path Delay : 0 Steps removed : 0 Local clock time:Sun Jul 3 14:13:24 2011 switch(config)# Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 29: Configuring Ptp On An Interface
You can only enable PTP on one VLAN on an interface. The range is from 1 to 4094. Step 8 switch(config-if) # show ptp brief (Optional) Displays the PTP status. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 30: Configuring Multiple Ptp Domains
Enters global configuration mode. Step 2 switch(config) # [no] feature Enables or disables PTP on the device. Enabling PTP on the switch does not enable PTP on each Note interface. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 31 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 32: Configuring Ptp Grandmaster Clock
Enters global configuration mode. Step 2 switch(config) # [no] feature ptp Enables or disables PTP on the device. Note Enabling PTP on the switch does not enable PTP on each interface. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 33 Accuracy : 254 Offset (log variance) : 65535 Offset From Master : 0 Mean Path Delay : 391 Steps removed : 1 Local clock time:Wed Nov 9 10:31:21 2016 switch(config-if)# Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 34: Configuring Ptp Cost Interface
Configuring PTP Cost Interface Configuring PTP Cost Interface You can configure interface cost on each PTP enabled port on a Cisco Nexus 3500 switch. The cost applies to each PTP enabled port if the switch has more than one path to grandmaster clock.
Page 35: Verifying The Ptp Configuration
Displays multiple domain data, domain priority, clock threshold and information about grandmaster capabilities. show ptp interface domain Displays information about the interface to domain association. Displays PTP port to cost association. show ptp cost Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 36 Configuring PTP Verifying the PTP Configuration Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 37: Configuring User Accounts And Rbac
Configuring User Accounts Default Settings for the User Accounts and RBAC, page 30 Information About User Accounts and RBAC Cisco Nexus Series switches use role-based access control (RBAC) to define the amount of access that each user has when the user logs into the switch.
Page 38: Rules
A command or group of commands defined in a regular expression. Feature Commands that apply to a function provided by the Cisco Nexus device. Enter the show role feature command to display the feature names available for this parameter. Feature group Default or user-defined group of features.
Page 39: User Account Configuration Restrictions
• halt • lp • mail • mailnull • man • mtsuser • news • nobody • san-admin • shutdown • sync • sys • uucp • xfs Caution Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 40: User Password Requirements
(%), can be used in Cisco Nexus device passwords. If a password is trivial (such as a short, easy-to-decipher password), the Cisco Nexus device rejects the password. Be sure to configure a strong password for each user account. A strong password has the following characteristics: •...
Page 41: Configuring User Accounts
Copies the running configuration to the startup startup-config configuration. The following example shows how to configure a user account: switch# configure terminal switch(config)# username NewUser password 4Ty18Rnt switch(config)# exit switch# show user-account Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 42: Configuring Rbac
Repeat this command for as many rules as needed. Step 7 switch(config-role)# description text (Optional) Configures the role description. You can include spaces in the description. Step 8 switch(config-role)# end Exits role configuration mode. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 43: Creating Feature Groups
This example shows how to create a feature group: switch# configure terminal switch(config) # role feature-group group1 switch(config) # exit switch# show role feature-group switch# copy running-config startup-config switch# Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 44: Changing User Role Interface Policies
3/1 switch(config-role-interface)# permit interface vfc 30/1 Changing User Role VLAN Policies You can change a user role VLAN policy to limit the VLANs that the user can access. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 45: Verifying The User Accounts And Rbac Configuration
[all] Displays the user account configuration in the running configuration. The all keyword displays the default values for the user accounts. Displays user account information. show user-account Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 46: Configuring User Accounts Default Settings For The User Accounts And Rbac
User account expiry date None. Interface policy All interfaces are accessible. VLAN policy All VLANs are accessible. VFC policy All VFCs are accessible. VETH policy All VETHs are accessible. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 47: Chapter 5 Configuring Session Manager
• Configuration session—Creates a list of commands that you want to implement in session manager mode. • Validation—Provides a basic semantic check on your configuration. Cisco NX-OS returns an error if the semantic check fails on any part of the configuration.
Page 48: Configuring Session Manager
The name can be any alphanumeric string. Step 2 switch(config-s)# ip access-list name Creates an ACL. Step 3 switch(config-s-acl)# permit protocol source (Optional) destination Adds a permit statement to the ACL. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 49: Verifying A Session
(Optional) Saves the session to a file. The location can be in bootflash or volatile. Discarding a Session To discard a session, use the following command in session mode: Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 50: Configuration Example For Session Manager
Displays the contents of the configuration session. show configuration session status [name] Displays the status of the configuration session. show configuration session summary Displays a summary of all the configuration sessions. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 51: Configuring The Scheduler
The scheduler defines a job and its timetable as follows: A routine task or tasks defined as a command list and completed according to a specified schedule. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 52: Remote User Authentication
Licensing Requirements for the Scheduler This feature does not require a license. Any feature not included in a license package is bundled with the Cisco NX-OS system images and is provided at no extra charge to you. For a complete explanation of the Cisco NX-OS licensing scheme, see the Cisco NX-OS Licensing Guide.
Page 53: Default Settings For The Scheduler
This example shows how to enable the scheduler: switch# configure terminal switch(config)# feature scheduler switch(config)# show scheduler config config terminal feature scheduler scheduler logfile size 16 switch(config)# Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 54: Defining The Scheduler Log File Size
To configure an encrypted password, enter 7. Step 3 switch(config) # scheduler Configures a clear text password for a remote user. aaa-authentication username name password [0 | 7] password Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 55: Defining A Job
The name is restricted to 31 characters. Step 5 switch(config-job) # copy (Optional) running-config startup-config Saves the change persistently through reboots and restarts by copying the running configuration to the startup configuration. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 56: Deleting A Job
• For the time daily 55 command, the scheduler assumes a start time every day at 22:55 hours. • For the time weekly 23:00 command, the scheduler assumes a start time every Friday at 23:00 hours. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 57 • now— Specifies that the job starts two minutes from now. • repeat repeat-interval— Specifies the frequency at which the job is repeated. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 58: Clearing The Scheduler Log File
Enters global configuration mode. Step 2 switch(config) # no feature scheduler Disables the scheduler. Step 3 switch(config) # show scheduler config (Optional) Displays the scheduler configuration. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 59: Verifying The Scheduler Configuration
TFTP server (the filename is created using the current time stamp and switch name): switch# configure terminal switch(config)# scheduler job name backup-cfg switch(config-job)# cli var name timestamp $(TIMESTAMP) ;copy running-config bootflash:/$(SWITCHNAME)-cfg.$(timestamp) ;copy bootflash:/$(SWITCHNAME)-cfg.$(timestamp) tftp://1.2.3.4/ vrf management switch(config-job)# end switch(config)# Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 60: Scheduling A Scheduler Job
`cli var name timestamp 2009-01-02-01.00.00` `copy running-config bootflash:/switch-cfg.2009-01-02-01.00.00` `copy bootflash:/switch-cfg.2009--01-02-01.00.00 tftp://1.2.3.4/ vrf management ` Connection to Server Established. 0.50KBTrying to connect to tftp server..[###### 24.50KB TFTP put operation was successful ============================================================================== switch# Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 61: Standards For The Scheduler
Standards for the Scheduler Standards for the Scheduler No new or modified standards are supported by this feature, and support for existing standards has not been modified by this feature. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 62 Configuring the Scheduler Standards for the Scheduler Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 63: Chapter 7 Configuring Online Diagnostics
Online diagnostics provide verification of hardware components during switch bootup or reset, and they monitor the health of the hardware during normal switch operation. Cisco Nexus Series switches support bootup diagnostics and runtime diagnostics. Bootup diagnostics include disruptive tests and nondisruptive tests that run during system bootup and system reset.
Page 64: Health Monitoring Diagnostics
Bootup diagnostics log any failures to the onboard failure logging (OBFL) system. Failures also trigger an LED display to indicate diagnostic test states (on, off, pass, or fail). You can configure Cisco Nexus device to either bypass the bootup diagnostics or run the complete set of bootup diagnostics.
Page 65: Expansion Module Diagnostics
Tests the forwarding engine ASICs. Forwarding engine port Tests the ports on the forwarding engine ASICs. Front port Tests the components (such as PHY and MAC) on the front ports. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 66: Configuring Online Diagnostics
The following example shows how to configure the bootup diagnostics level to trigger the complete diagnostics: switch# configure terminal switch(config)# diagnostic bootup level complete Verifying the Online Diagnostics Configuration Use the following commands to verify online diagnostics configuration information: Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 67: Default Settings For Online Diagnostics
Displays the results of the diagnostics tests. Default Settings for Online Diagnostics The following table lists the default settings for online diagnostics parameters. Table 12: Default Online Diagnostics Parameters Parameters Default Bootup diagnostics level complete Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 68 Configuring Online Diagnostics Default Settings for Online Diagnostics Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 69: Configuring Ntp
NTP uses a stratum to describe the distance between a network device and an authoritative time source: • A stratum 1 time server is directly attached to an authoritative time source (such as a radio or atomic clock or a GPS time source). Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 70: Ntp As A Time Server
Before synchronizing, NTP compares the time reported by several network devices and does not synchronize with one that is significantly different, even if it is a stratum 1. Because Cisco NX-OS cannot connect to a radio or atomic clock and act as a stratum 1 server, we recommend that you use the public NTP servers available on the Internet.
Page 71: Guidelines And Limitations For Ntp
• If you configure NTP in a VRF, ensure that the NTP server and peers can reach each other through the configured VRFs. • You must manually distribute NTP authentication keys on the NTP server and Cisco NX-OS devices across the network.
Page 72: Configuring Ntp
NTP server, make sure that the key exists as a trusted key on the device. Step 3 switch(config)# [no] ntp peer Forms an association with a peer. You can specify multiple peer {ip-address | ipv6-address | associations. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 73: Configuring Ntp Authentication
The device drops any packets that fail the authentication check and prevents them from updating the local clock. NTP authentication is disabled by default. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 74 Enter configuration commands, one per line. End with CNTL/Z. switch(config)# ntp authentication-key 42 md5 aNiceKey switch(config)# ntp trusted-key 42 switch(config)# ntp authenticate switch(config)# copy running-config startup-config [########################################] 100% switch(config)# Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 75: Configuring Ntp Access Restrictions
This example shows how to configure the device to allow it to synchronize to a peer from access group “accesslist1”: switch# config t switch(config)# ntp access-group peer accesslist1 switch(config)# show ntp access-groups Access List Type ----------------------------- accesslist1 Peer switch(config)# copy running-config startup-config Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 76: Configuring The Ntp Source Ip Address
2/1 Configuring NTP Logging You can configure NTP logging in order to generate system logs with significant NTP events. NTP logging is disabled by default. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 77: Enabling Cfs Distribution For Ntp
Displays the NTP CFS distribution status. Step 4 switch(config)# copy running-config (Optional) startup-config Saves the change persistently through reboots and restarts by copying the running configuration to the startup configuration. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 78: Commiting Ntp Configuration Changes
After making the configuration changes, you can choose to discard the changes instead of committing them. If you discard the changes, Cisco NX-OS removes the pending database changes and releases the CFS lock. To discard NTP configuration changes, use the following command in global configuration mode:...
Page 79: Releasing The Cfs Session Lock
Displays the temporary CFS database for NTP. Step 8 show ntp pending-diff Displays the difference between the pending CFS database and the current NTP configuration. Step 9 show ntp rts-update Displays the RTS update status. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 80: Configuration Examples For Ntp
• Peer restrictions are applied to IP addresses that pass the criteria of the access list named “peer-acl.” • Serve restrictions are applied to IP addresses that pass the criteria of the access list named “serve-acl.” Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 81: Related Documents For Ntp
This table includes only the updates for those releases that have resulted in additions or changes to the feature. Feature Name Releases Feature Information 5.0(3)A1(1) This feature was introduced. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 82 Configuring NTP Feature History for NTP Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 83: Configuring System Message Logging
System message logging is based on 3164. For more information about the system message format and the messages that the device generates, see the Cisco NX-OS System Messages Reference. By default, the Cisco Nexus device outputs messages to terminal sessions.
Page 84: Syslog Servers
You can configure the Cisco Nexus Series switch to sends logs to up to eight syslog servers. To support the same configuration of syslog servers on all switches in a fabric, you can use Cisco Fabric Services (CFS) to distribute the syslog server configuration.
Page 85: Guidelines And Limitations For System Message Logging
By default, logging is enabled for terminal sessions. Procedure Command or Action Purpose Step 1 switch# terminal monitor Copies syslog messages from the console to the current terminal session. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 86 If the severity level is not specified, the default of 2 is used. The configuration applies to Telnet and SSH sessions. Step 6 switch(config)# no logging (Optional) monitor [severity-level] Disables logging messages to Telnet and SSH sessions. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 87: Configuring System Message Logging To A File
Step 2 switch(config)# logging logfile Configures the name of the log file used to store system logfile-name severity-level [size messages and the minimum severity level to log. You can bytes] Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 88 (Severity: debugging) Logging timestamp: Seconds Logging server: disabled Logging logfile: enabled Name - my_log: Severity - informational Size - 4194304 Facility Default Severity Current Session Severity -------- ---------------- ------------------------ altos Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 89: Configuring Module And Facility Messages Logging
• 0 – emergency • 1 – alert • 2 – critical • 3 – error • 4 – warning • 5 – notification • 6 – informational • 7 – debugging Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 90: Configuring Logging Timestamps
The following example shows how to configure the severity level of module and specific facility messages: switch# configure terminal switch(config)# logging module 3 switch(config)# logging level aaa 2 Configuring Logging Timestamps You can configure the time-stamp units of messages logged by the Cisco Nexus Series switch. Procedure Command or Action Purpose Step 1 switch# configure terminal Enters global configuration mode.
Page 91: Configuring Syslog Servers
(VRF) name. If a specific VRF is not identified, management is the default. However, if management is configured, it will not be listed in the output of the show-running command because it is the default. If a Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 92: Configuring Syslog On A Unix Or Linux System
You can configure a syslog server on a UNIX or Linux system by adding the following line to the /etc/syslog.conf file: facility.level <five tab characters> action The following table describes the syslog fields that you can configure. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 93: Configuring Syslog Server Configuration Distribution
$ kill -HUP ~cat /etc/syslog.pid~ Configuring syslog Server Configuration Distribution You can distribute the syslog server configuration to other switches in the network by using the Cisco Fabric Services (CFS) infrastructure. After you enable syslog server configuration distribution, you can modify the syslog server configuration and view the pending changes before committing the configuration for distribution.
Page 94: Displaying And Clearing Log Files
(Optional) Copies the running configuration to the startup configuration. startup-config Displaying and Clearing Log Files You can display or clear messages in the log file and the NVRAM. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 95: Configuring Dom Logging
Enabling DOM Logging Procedure Command or Action Purpose Step 1 switch# configure terminal Enters global configuration mode. Step 2 switch(config)# system ethernet dom Enables transceiver digital optical monitoring periodic polling. polling Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 96: Disabling Dom Logging
Displays the status of the IP access list cache. show logging ip access-list status show logging last number-lines Displays the last number of lines of the log file. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 97 Displays the syslog server configuration. show logging session Displays the logging session status. Displays the logging status. show logging status show logging timestamp Displays the logging time-stamp units configuration. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 98 Configuring System Message Logging Verifying the System Message Logging Configuration Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 99: C H A P T E
Technical Assistance Center (TAC). If you have a service contract directly with Cisco, you can register your devices for the Smart Call Home service. Smart Call Home provides fast resolution of system problems by analyzing Smart Call Home messages sent from your devices and providing background information and recommendations.
Page 100: Smart Call Home Overview
You can also configure a destination profile to allow periodic inventory update messages by using the inventory alert group that will send out periodic messages daily, weekly, or monthly. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 101: Smart Call Home Alert Groups
Smart Call Home Alert Groups An alert group is a predefined subset of Smart Call Home alerts that are supported in all Cisco Nexus devices. Alert groups allow you to select the set of Smart Call Home alerts that you want to send to a predefined or custom destination profile.
Page 102: Smart Call Home Message Levels
0 (the switch sends all messages). Smart Call Home messages that are sent for syslog alert groups have the syslog severity level mapped to the Smart Call Home message level. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 103: Call Home Message Formats
• Common fields for all full text and XML messages • Inserted fields for a reactive or proactive event message • Inserted fields for an inventory event message • Inserted fields for a user-generated test message Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 104 Name of message type, such as /aml/header/type reactive or proactive. Message group Name of alert group, such as /aml/header/group syslog. Severity level Severity level of message. /aml/header/level Source ID Product type for routing. /aml/header/source Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 105 ID by any support service. Site ID Optional user-configurable field /aml/ header/siteID used for Cisco-supplied site ID or other data meaningful to alternate support service. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 106 Serial number Chassis serial number of the unit. /aml/body/chassis/serialNo Chassis part number Top assembly number of the /aml/body/chassis/partNo chassis. Fields specific to a particular alert group message are inserted here. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 107 Table 22: Inserted Fields for an Inventory Event Message Data Item (Plain Text and XML) Description (Plain Text and XML) XML Tag (XML Only) Chassis hardware version Hardware version of the chassis. /aml/body/chassis/hwVersion Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 108: Guidelines And Limitations For Smart Call Home
• You must have access to contact name (SNMP server contact), phone, and street address information. • You must have IP connectivity between the switch and the e-mail server. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 109: Default Call Home Settings
• Know the sMARTnet contract number for your switch • Know your e-mail address • Know your Cisco.com ID Procedure Step 1 In a browser, navigate to the Smart Call Home web page: http://www.cisco.com/go/smartcall/ Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 110: Configuring Contact Information
Configures the contract number for this switch from the service agreement. The contract-number can be up to 255 alphanumeric characters. Step 8 switch(config-callhome)# (Optional) customer-id customer-number Configures the customer number for this switch from the service agreement. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 111: Creating A Destination Profile
You must create a user-defined destination profile and configure the message format for that new destination profile. Procedure Command or Action Purpose Step 1 switch# configure terminal Enters global configuration mode. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 112: Modifying A Destination Profile
• Message level—The Call Home message severity level for this destination profile. • Message size—The allowed length of a Call Home message sent to the e-mail addresses in this destination profile. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 113 5 switch(config-callhome)# destination-profile full-text-destination message-size 10000 switch(config-callhome)# What to Do Next Associate an alert group with a destination profile. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 114: Associating An Alert Group With A Destination Profile
You can assign a maximum of five user-defined show commands to an alert group. Procedure Command or Action Purpose Step 1 switch# configure terminal Enters global configuration mode. Step 2 switch(config)# callhome Enters Smart Call Home configuration mode. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 115: Configuring E-Mail Server Details
The following example shows how to add the show ip routing command to the Cisco-TAC alert group: switch# configuration terminal switch(config)# callhome switch(config-callhome)# alert-group Configuration user-def-cmd show ip routing...
Page 116: Configuring Periodic Inventory Notifications
Configures periodic inventory messages. periodic-inventory notification The interval days range is from 1 to 30 days. [interval days] [timeofday time] The default is 7 days. The timeofday time is in HH:MM format. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 117: Disabling Duplicate Message Throttling
The following example shows how to disable duplicate message throttling: switch# configuration terminal switch(config)# callhome switch(config-callhome)# no duplicate-message throttle switch(config-callhome)# Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 118: Enabling Or Disabling Smart Call Home
Smart Call Home testing fails when the message level for the destination profile is set to 3 or higher. Important Procedure Command or Action Purpose Step 1 switch# configure terminal Enters global configuration mode. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 119: Verifying The Smart Call Home Configuration
Displays the running configuration for Smart Call Home. show startup-config callhome Displays the startup configuration for Smart Call Home. Displays the technical support output for Smart Call show tech-support callhome Home. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 120: Sample Syslog Alert Notification In Full-Text Format
<soap-env:Envelope xmlns:soap-env="http://www.w3.org/2003/05/soap-envelope"> <soap-env:Header> <aml-session:Session xmlns:aml-session="http://www.example.com/2004/01/aml-session" soap-env:mustUnderstand="true" soap-env:role= "http://www.w3.org/2003/05/soap-envelope/role/next"> <aml-session:To>http://tools.example.com/services/DDCEService</aml-session:To> <aml-session:Path> <aml-session:Via>http://www.example.com/appliance/uri</aml-session:Via> </aml-session:Path> <aml-session:From>http://www.example.com/appliance/uri</aml-session:From> <aml-session:MessageId>M2:69000101:C9D9E20B</aml-session:MessageId> </aml-session:Session> </soap-env:Header> <soap-env:Body> <aml-block:Block xmlns:aml-block="http://www.example.com/2004/01/aml-block"> <aml-block:Header> <aml-block:Type>http://www.example.com/2005/05/callhome/syslog</aml-block:Type> <aml-block:CreationDate>2007-04-25 14:19:55 GMT+00:00</aml-block:CreationDate> <aml-block:Builder> <aml-block:Name>Cat6500</aml-block:Name> <aml-block:Version>2.0</aml-block:Version> </aml-block:Builder> <aml-block:BlockGroup> Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 121 00:01:05: %SYS-5-CONFIG_I: Configured from memory by console 00:01:09: %SYS-5-RESTART: System restarted --Cisco IOS Software, s72033_rp Software (s72033_rp-ADVENTERPRISEK9_DBG-VM), Experimental Version 12.2(20070421:012711) Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Thu 26-Apr-07 15:54 by xxx Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 122 Cisco DCOS Software, c6slc Software (c6slc-SPDBG-VM), Experimental Version 4.0 (20080421:012711)Copyright (c) 1986-2008 by Cisco Systems, Inc. Compiled Thu 26-Apr-08 16:40 by username1 00:00:25: DFC1: Currently running ROMMON from F2 region Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 123 00:06:59: %OIR-SP-6-DOWNGRADE_EARL: Module 8 DFC installed is not identical to system PFC and will perform at current system operating mode. 00:07:06: %OIR-SP-6-INSCARD: Card inserted in slot 8, interfaces are now online Router#]]> </aml-block:Data> </aml-block:Attachment> </aml-block:Attachments> </aml-block:Block> </soap-env:Body> </soap-env:Envelope> Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 124 Configuring Smart Call Home Sample Syslog Alert Notification in XML Format Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 125: Configuring Rollback
You can create a checkpoint copy of the current running configuration at any time. Cisco NX-OS saves this checkpoint as an ASCII file which you can use to roll back the running configuration to the checkpoint configuration at a future time.
Page 126: Creating A Checkpoint
• Checkpoint names must be unique. You cannot overwrite previously saved checkpoints with the same name. • The Cisco NX-OS commands may differ from the Cisco IOS commands. Creating a Checkpoint You can create up to ten checkpoints of your configuration per switch.
Page 127: Implementing A Rollback
Displays the contents of the checkpoint name. show checkpoint all [user | system] Displays the contents of all checkpoints in the current switch. You can limit the displayed checkpoints to user or system-generated checkpoints. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 128 | startup-config | file dest-file} show rollback log [exec | verify] Displays the contents of the rollback log. Use the clear checkpoint database command to delete all checkpoint files. Note Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 129: C H A P T E
A name server may also store information about other parts of the domain tree. To map domain names to IP addresses in Cisco NX-OS, you must first identify the hostnames, then specify a name server, and enable the DNS service.
Page 130: Dns Operation
High Availability Cisco NX-OS supports stateless restarts for the DNS client. After a reboot or supervisor switchover, Cisco NX-OS applies the running configuration. Prerequisites for DNS Clients The DNS client has the following prerequisites: •...
Page 131: Configuring Dns Clients
VRF that you configured this domain name under. Cisco NX-OS uses each entry in the domain list to append that domain name to any hostname that does not contain a complete domain name before starting a domain-name lookup.
Page 132 The following example shows how to configure a default domain name and enable DNS lookup: switch# config t switch(config)# vrf context management switch(config)# ip domain-name mycompany.com switch(config)# ip name-server 172.68.0.10 switch(config)# ip domain-lookup Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 133: Configuring Snmp
• An SNMP agent—The software component within the managed device that maintains the data for the device and reports these data, as needed, to managing systems. The Cisco Nexus device supports the agent and MIB. To enable the SNMP agent, you must define the relationship between the manager and the agent.
Page 134: Snmp Notifications
The switch cannot determine if the trap was received. An SNMP manager that receives an inform request acknowledges the message with an SNMP response protocol data unit (PDU). If the Cisco Nexus device never receives a response, it can send the inform request again.
Page 135 HMAC-MD5 or HMAC-SHA algorithms. Provides Data Encryption Standard (DES) 56-bit encryption in addition to authentication based on the Cipher Block Chaning (CBC) DES (DES-56) standard. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 136: User-Based Security Model
• HMAC-MD5-96 authentication protocol • HMAC-SHA-96 authentication protocol Cisco NX-OS uses Advanced Encryption Standard (AES) as one of the privacy protocols for SNMPv3 message encryption and conforms with RFC 3826. The priv option offers a choice of DES or 128-bit AES encryption for SNMP security encryption. The priv option and the aes-128 token indicates that this privacy password is for generating a 128-bit AES key #.The...
Page 137: Group-Based Snmp Access
Licensing Requirements for SNMP This feature does not require a license. Any feature not included in a license package is bundled with the Cisco NX-OS system images and is provided at no extra charge to you. For a complete explanation of the Cisco NX-OS licensing scheme, see the Cisco NX-OS Licensing Guide.
Page 138: Default Snmp Settings
Enabled linkUp/Down notification type ietf-extended Configuring SNMP Configuring SNMP Users The commands used to configure SNMP users in Cisco NX-OS are different from those used to configure Note users in Cisco IOS. Procedure Command or Action Purpose Step 1 Enters global configuration mode.
Page 139: Enforcing Snmp Message Encryption
You can configure SNMP to require authentication or encryption for incoming requests. By default, the SNMP agent accepts SNMPv3 messages without authentication and encryption. When you enforce privacy, Cisco NX-OS responds with an authorization error for any SNMPv3 PDU request that uses a security level parameter of either noAuthNoPriv or authNoPriv.
Page 140: Creating Snmp Communities
The ACL applies to both IPv4 and IPv6 over UDP and TCP. After creating the ACL, assign the ACL to the SNMP community. For more information about creating ACLs, see the NX-OS security configuration guide for the Cisco Nexus Series software that you are using.
Page 141 192.0.2.1 informs version 2c public The following example shows how to configure a host receiver for an SNMPv3 inform: switch(config)# snmp-server host 192.0.2.1 informs version 3 auth NMS Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 142: Configuring Snmp Notification Receivers With Vrfs
Configuring SNMP Notification Receivers with VRFs Configuring SNMP Notification Receivers with VRFs You can configure Cisco NX-OS to use a configured VRF to reach the host receiver. SNMP adds entries into the cExtSnmpTargetVrfTable of the CISCO-SNMP-TARGET-EXT-MIB when you configure the VRF reachability and filtering options for an SNMP notification receiver.
Page 143: Configuring Snmp For Inband Access
32 characters. Step 4 switch(config)# snmp-server mib Maps an SNMPv2c community to an SNMP context. The community-map community-name names can be any alphanumeric string up to 32 characters. context context-name Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 144: Enabling Snmp Notifications
Enabling SNMP Notifications You can enable or disable notifications. If you do not specify a notification name, Cisco NX-OS enables all notifications. The snmp-server enable traps CLI command enables both traps and informs, depending on the configured Note notification host receivers.
Page 145 Supports no MIB objects except the Note following notification: ccmCLIRunningConfigChanged Note The license notifications are enabled by default. To enable the specified notification in the global configuration mode, perform one of the following tasks: Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 146: Configuring Link Notifications
Step 2 snmp-server enable traps link [cieLinkDown | cieLinkUp | Enables the link SNMP cisco-xcvr-mon-status-chg | delayed-link-state-change] | notifications. extended-linkUp | extended-linkDown | linkDown | linkUp] Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 147: Disabling Link Notifications On An Interface
TCP session. This feature is disabled by default. Assigning SNMP Switch Contact and Location Information You can assign the switch contact information, which is limited to 32 characters (without spaces), and the switch location. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 148: Configuring The Context To Network Entity Mapping
Do not enter an instance, VRF, or topology to Note delete a context mapping. If you use the instance, vrf, or topology keywords, you configure a mapping between the context and a zero-length string. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 149: Disabling Snmp
Displays the SNMP engineID. show snmp group Displays SNMP roles. Displays SNMP sessions. show snmp sessions show snmp trap Displays the SNMP notifications enabled or disabled. show snmp user Displays SNMPv3 users. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 150 Configuring SNMP Verifying the SNMP Configuration Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 151: Chapter 1 4 Configuring Rmon
You can use alarms with RMON events to generate a log entry or an SNMP notification when the RMON alarm triggers. RMON is disabled by default and no events or alarms are configured in Cisco Nexus devices. You can configure your RMON alarms and events by using the CLI or an SNMP-compatible network management station.
Page 152: Rmon Events
• Sample type—Absolute samples take the current snapshot of the MIB object value. Delta samples take two consecutive samples and calculate the difference between them. • Rising threshold—The value at which the Cisco Nexus device triggers a rising alarm or resets a falling alarm.
Page 153: Configuring Rmon
[storagetype type] Step 4 switch# show rmon {alarms | hcalarms} (Optional) Displays information about RMON alarms or high-capacity alarms. Step 5 switch# copy running-config startup-config (Optional) Saves this configuration change. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 154: Configuring Rmon Events
Verifying the RMON Configuration Use the following commands to verify the RMON configuration information: Command Purpose show rmon alarms Displays information about RMON alarms. Displays information about RMON events. show rmon events Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 155: Default Rmon Settings
Default RMON Settings The following table lists the default settings for RMON parameters. Table 28: Default RMON Parameters Parameters Default Alarms None configured. Events None configured. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 156 Configuring RMON Default RMON Settings Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 157: Configuring Span
Suspending a SPAN Session, page 149 • Configuring a SPAN Filter, page 149 • Configuring SPAN Sampling, page 150 • Configuring SPAN Truncation, page 152 • Displaying SPAN Information, page 153 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 158: Information About Span
Information About SPAN The Switched Port Analyzer (SPAN) feature (sometimes called port mirroring or port monitoring) selects network traffic for analysis by a network analyzer. The network analyzer can be a Cisco SwitchProbe or other Remote Monitoring (RMON) probes. SPAN Sources SPAN sources refer to the interfaces from which traffic can be monitored.
Page 159: Span Destinations
SPAN and ERSPAN filtering have the following guidelines and limitations: • Cisco Nexus 3500 Series switches drop the SPAN copies while spanning an interface in the rx direction and another interface in the tx direction when the traffic starts. It happens due to the default SPAN...
Page 160: Span And Erspan Sampling
• You cannot configure filters on Warp SPAN sessions. SPAN and ERSPAN Sampling Cisco NX-OS Release 6.0(2)A4(1) supports sampling of source packets for each SPAN or ERSPAN session. Monitoring only a sample number of source packets helps reduce SPAN or ERSPAN bandwidth. This sample is defined by a range that you can configure.
Page 161: Guidelines And Limitations For Span And Erspan Sampling
• The supported sampling range is from 2 to 1023. SPAN and ERSPAN Truncation Cisco NX-OS Release 6.0(2)A4(1) introduces truncation of source packets for each SPAN or ERSPAN session based on the size of their MTU. Truncation helps reduce SPAN or ERSPAN bandwidth by reducing the size of packets monitored.
Page 162: Configuring An Ethernet Destination Port
Configures the Ethernet SPAN destination port. destination interface ethernet To enable the virtual ethernet port as destination Note slot/port interface in the monitor configuration, you can use the destination interface vethernet slot/port command. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 163: Configuring Source Ports
You can configure the source channels for a SPAN session. These ports can be port channels and VLANs. The monitored direction can be ingress, egress, or both and applies to all physical ports in the group. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 164: Configuring The Description Of A Span Session
The following example shows how to configure a SPAN session description: switch# configure terminal switch(config) # monitor session 2 switch(config-monitor) # description monitoring ports eth2/2-eth2/4 switch(config-monitor) # Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 165: Activating A Span Session
The following example shows how to suspend a SPAN session: switch# configure terminal switch(config) # monitor session 3 shut switch(config) # Configuring a SPAN Filter You can configure SPAN filters for local and ERSPAN-source sessions only. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 166: Configuring Span Sampling
Procedure Command or Action Purpose Step 1 switch# configure terminal Enters global configuration mode. Step 2 switch(config)# monitor session Enters monitor configuration mode for the session-number specified SPAN session. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 167 : 20 source intf : Eth1/8 : Eth1/8 both : Eth1/8 source VLANs : 200 destination ports : Eth1/4 Legend: f = forwarding enabled, l = learning enabled Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 168: Configuring Span Truncation
: down (No operational src/dst) : 512 source intf : Eth1/5 : Eth1/5 both : Eth1/5 source VLANs destination ports : Eth1/39 Legend: f = forwarding enabled, l = learning enabled Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 169: Displaying Span Information
The following example shows how to display SPAN session details: switch# show monitor session 2 session 2 --------------- type : local state : up source intf source VLANs destination ports : Eth3/1 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 170 Configuring SPAN Displaying SPAN Information Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 171: Chapter 1 6 Configuring Warp Span
Layer 2/Layer 3 ports. Destination ports must be configured in groups of four, so you can create a maximum of 12 groups with a total of 47 destination ports (one port—port 1/36—is the fixed source port). See the following table. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 172: Guidelines And Limitations For Warp Span
Warp SPAN logs the following error: ERROR: Cannot configure group with member interfaces in admin DOWN state Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 173: Configuring Warp Span
1 switch(config-if-range)# copy running-config startup-config Verifying Warp SPAN Mode Configuration You can verify the Warp SPAN mode configuration. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 174: Feature History For Warp Span
: Eth1/1 Eth1/2 Eth1/3 Eth1/4 Legend: f = forwarding enabled, l = learning enabled Feature History for Warp SPAN Feature Name Release Feature Information Warp SPAN 5.0(3)A1(2) This feature was introduced. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 175: Configuring Erspan
Additional References, page 177 Information About ERSPAN The Cisco NX-OS system supports the Encapsulated Remote Switching Port Analyzer (ERSPAN) feature on both source and destination ports. ERSPAN transports mirrored traffic over an IP network. The traffic is encapsulated at the source router and is transferred across the network. The packet is decapsulated at the destination router and then sent to the destination interface.
Page 176: Erspan Sources
Only eight unidirectional, or four bidirectional ERSPAN or SPAN source sessions can run simultaneously Note across all switches. Only 20 ERSPAN destination sessions can run simultaneously across all switches. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 177: Multiple Erspan Sessions
To recover the real value of the ERSPAN timestamp, Cisco NX-OS Release 6.0(2)A4(1) introduces a periodical marker packet to carry the original UTC timestamp information and provide a reference for the ERSPAN timestamp.
Page 178: Prerequisites For Erspan
• ERSPAN is not supported for management ports. • A destination port can be configured in only one ERSPAN session at a time. • You cannot configure a port as both a source and destination port. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 179 ◦ Traffic that results from flooding ◦ Broadcast and multicast traffic • When Nexus 3548 is the ERSPAN destination, GRE headers are stripped off before sending mirrored packets out of the terminating point. • ERSPAN does not support 1588 granularity mode, and rejects this mode if selected.
Page 180: Default Settings For Erspan
The new session configuration is added to the existing session configuration. Example: switch(config)# no monitor session 3 Step 4 monitor session {session-number | all} type Configures an ERSPAN source session. erspan-source Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 181 ERSPAN session must be same as the one configured in the source session. Step 10 vrf vrf-name Configures the VRF that the ERSPAN source session uses for traffic forwarding. Example: switch(config-erspan-src)# vrf default Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 182: Configuring An Erspan Destination Session
By default, ERSPAN destination sessions are created in the shut state. Before You Begin Ensure that you have already configured the destination ports in monitor mode. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 183 Step 9 description description Configures a description for the session. By default, no description is defined. The description can be up to 32 alphanumeric characters. Example: switch(config-erspan-dst)# description erspan_dst_session_3 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 184 (Optional) Displays the running ERSPAN configuration. Example: switch(config-erspan-src)# show running-config monitor Step 17 (Optional) show startup-config monitor Displays the ERSPAN startup configuration. Example: switch(config-erspan-src)# show startup-config monitor Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 185: Shutting Down Or Activating An Erspan Session
3 Note • In Cisco Nexus 5000 and 5500 shut platforms, two sessions can run simultaneously. • In Cisco Nexus 5600 and 6000 platforms, 16 sessions can run simultaneously. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 186 (Optional) Displays the running ERSPAN configuration. Example: switch(config-erspan-src)# show running-config monitor Step 10 (Optional) show startup-config monitor Displays the ERSPAN startup configuration. Example: switch(config-erspan-src)# show startup-config monitor Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 187: Configuring Erspan Filtering
[interface [type slot/port] | port-channel to copy packets. You can enter a range of Ethernet ports, channel-number] | [vlan vlan-range] [rx a port channel, or a range of VLANs. | tx | both] Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 188: Configuring Erspan Sampling
Configures a range for spanning packets. If the range is sampling-range defined as n, every nth packet will be spanned. The sampling range is between 2 and 1023. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 189 : 200 sampling : 40 origin-ip : 150.1.1.1 (global) source intf : rx : Eth1/47 tx : Eth1/47 both : Eth1/47 source VLANs : rx : 315 switch(config-erspan-src)# Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 190: Configuring Erspan Truncation
The following example shows how to configure MTU truncation for an ERSPAN-source session: switch# configure terminal switch(config)# monitor session 6 type erspan-source switch(config-erspan-src)# mtu 1096 switch(config-erspan-src)# erspan-id 40 switch(config-erspan-src)# vrf default switch(config-erspan-src)# destination ip 200.1.1.1 switch(config-erspan-src)# source interface ethernet 1/40 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 191: Configuring An Erspan Marker Packet
1 switch(config-erspan-src)# ip ttl 16 switch(config-erspan-src)# ip dscp 5 switch(config-erspan-src)# vrf default switch(config-erspan-src)# destination ip 9.1.1.2 switch(config-erspan-src)# source interface e1/15 both switch(config-erspan-src)# marker-packet 2 switch(config-erspan-src)# no shut switch(config-erspan-src)# exit Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 192: Verifying The Erspan Configuration
2 type erspan-destination switch(config-erspan-dst)# source ip 9.1.1.2 switch(config-erspan-dst)# destination interface e14/29 switch(config-erspan-dst)# erspan-id 1 switch(config-erspan-dst)# vrf default switch(config-erspan-dst)# no shut Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 193: Additional References
Related Documents Related Topic Document Title ERSPAN commands: complete command syntax, Cisco Nexus NX-OS System Management Command command modes, command history, defaults, usage Reference for your platform. guidelines, and examples Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 194 Configuring ERSPAN Related Documents Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 195: Chapter 1 8 Performing Software Maintenance Upgrades (Smus)
The effect of an SMU depends on its type: • Process restart SMU-Causes a process or group of processes to restart on activation. • Reload SMU-Causes a parallel reload of supervisors and line cards. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 196: Package Management
SMUs are not an alternative to maintenance releases. They provide a quick resolution of immediate issues. All defects fixed by SMUs are integrated into the maintenance releases. For information on upgrading your device to a new feature or maintenance release, see the Cisco Nexus 3000 Series NX-OS Software Upgrade and Downgrade Guide.
Page 197: Guidelines And Limitations For Smus
• Each CLI install request is assigned a request ID, which can be used later to review the events. • If you perform a software maintenance upgrade and later upgrade your device to a new Cisco Nexus 3500 software release, the new image will overwrite both the previous Cisco Nexus 3500 release and the SMU package file.
Page 198: Copying The Package File To A Local Storage Device Or Network Server
• Trivial File Transfer Protocol—TFTP allows files to be transferred from one computer to another over a network, usually without the use of client authentication (for example, username and password). It is a simplified version of FTP. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 199: Adding And Activating Packages
(Optional) Displays the inactive packages on the device. Verify that the package added in the previous step appears in Example: the display. switch# show install inactive Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 200: Committing The Active Package Set
Example: switch# install commit n3500-uk9.6.0.2.U6.0.1.CSCab00001.bin Step 2 show install committed (Optional) Displays which packages are committed. Example: switch# show install committed Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 201: Deactivating And Removing Packages
Proceed with removing? (y/n)? [n] y with the filename argument. • To remove all inactive packages from all nodes in the system, use the install remove command with the inactive keyword. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 202: Displaying Installation Log Information
Install operation 5 completed successfully at Thu Jan 9 01:20:46 2014 ---------------------------------------- Install operation 6 by user 'admin' at Thu Jan 9 01:20:55 2014 Install remove n3500-uk9.6.0.2.U6.0.1.CSCab00001.bin Install operation 6 completed successfully at Thu Jan 9 01:20:57 2014 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 203: Chapter 1 9 Configuring Active Buffer Monitoring
2 counter (which represents 384 KB to 768 KB) for Ethernet 1/4 is incremented. To avoid a counter overflow, the Cisco NX-OS software collects the histogram data every polling interval and maintains it in the system memory. The software maintains the histogram data in the system memory for the last 60 minutes with 1-second granularity.
Page 204: Buffer Histogram Data Access And Collection
• You can access the buffer histogram data using an XML interface. • You can configure Cisco NX-OS to log a message in the syslog whenever the buffer occupancy exceeds the configured threshold.
Page 205: Displaying Buffer Histogram Data
Summary CLI issued at: 09/18/2012 07:38:39 Maximum buffer utilization detected 1sec 5sec 60sec 5min ------ ------ ------ ------ ------ Buffer Block 1 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 206 Ethernet1/7 Ethernet1/8 Ethernet1/41 Ethernet1/42 Ethernet1/43 Ethernet1/44 Ethernet1/29 Ethernet1/30 Ethernet1/31 Ethernet1/32 ============================================================ Buffer Block 3 5376KB 5376KB Total Shared Buffer Avaliable = 5799 Kbytes Class Threshold Limit = 5598 Kbytes Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 207 921 1228 1535 1842 2149 2456 2763 3070 3377 3684 3991 4298 4605 4912 ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- ---- 09/18/2012 08:30:12 09/18/2012 08:30:11 09/18/2012 08:30:10 09/18/2012 08:30:09 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 208 09/18/2012 07:38:35 09/18/2012 07:38:34 09/18/2012 07:38:33 09/18/2012 07:38:32 09/18/2012 07:38:31 09/18/2012 07:38:30 09/18/2012 07:38:29 09/18/2012 07:38:28 09/18/2012 07:38:27 09/18/2012 07:38:26 09/18/2012 07:38:25 09/18/2012 07:38:24 09/18/2012 07:38:23 09/18/2012 07:38:22 09/18/2012 07:38:21 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 209 Configuring Active Buffer Monitoring Displaying Buffer Histogram Data 09/18/2012 07:38:20 09/18/2012 07:38:19 09/18/2012 07:38:18 09/18/2012 07:38:17 09/18/2012 07:38:16 09/18/2012 07:38:15 09/18/2012 07:38:14 09/18/2012 07:38:13 09/18/2012 07:38:12 09/18/2012 07:38:11 09/18/2012 07:38:10 Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 210 Configuring Active Buffer Monitoring Displaying Buffer Histogram Data Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 211: Configuring Traffic Forwarding Modes
Feature History for Warp Mode, page 197 Information About Warp Mode The Cisco Nexus device uses a hardware component called the Algorithm Boost Engine (Algo Boost Engine) to support a forwarding mechanism, called warp mode. In warp mode, the access path is shortened by consolidating the forwarding table into single table, resulting in faster processing of frames and packets.
Page 212: Enabling And Disabling Warp Mode
Command or Action Purpose Step 1 switch# show hardware profile Displays information about warp mode and the host, unicast, multicast, and Layer 2 ternary content forwarding-mode addressable memory (TCAM) sizes. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 213: Feature History For Warp Mode
= 4096 multicast size = 8192 size = 8192 switch# Feature History for Warp Mode Feature Name Release Feature Information Warp Mode 5.0(3)A1(1) This feature was introduced. Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 214 Configuring Traffic Forwarding Modes Feature History for Warp Mode Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x...
Page 215 SPAN clock manager device IDs call home format commiting changes diagnostics 47, 48, 49, 50 ntp configuration configuring configuration example default settings ERSPAN expansion modules destination health monitoring Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x IN-1...
Page 216 Ethernet destination port, configuring SPAN information about example 43, 44 scheduler job schedule, displaying interfaces, configuring scheduler job, creating scheduler job, scheduling scheduler jobs, displaying results executing a session Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x IN-2...
Page 217 53, 54, 55, 59, 64, 65 scheduler access restriction, configuring remote user authentication, configuring 38, 39 clock manager scheduler 38, 39 configuration examples requirements default settings user passwords feature history roles guidelines authentication Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x IN-3...
Page 218 31, 33, 34 inband access committing a session licensing configuring an ACL session (example) message encryption description notification receivers discarding a session security model guidelines trap notifications Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x IN-4...
Page 219 67, 68, 69 guidelines and limitations information about licensing system message logging settings warp mode 195, 196 defaults disabling enabling guidelines and limitations overview verifying the status of Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x IN-5...
Page 220 Index warp SPAN guidelines and limitations Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x IN-6...

Cisco Nexus 3548 Configuration Manual

Preface

Audience

C H a P T E

New and Changed Information

Overview

Configuring PTP

Configuring User Accounts and RBAC

Chapter 5 Configuring Session Manager

Configuring the Scheduler

Chapter 7 Configuring Online Diagnostics

Configuring Online Diagnostics

Configuring NTP

Configuring System Message Logging

C H a P T E

Configuring Smart Call Home

Configuring Rollback

C H a P T E

Configuring DNS

Configuring SNMP

Chapter 1 4 Configuring RMON

Configuring SPAN

Chapter 1 6 Configuring Warp SPAN

Configuring ERSPAN

Chapter 1 8 Performing Software Maintenance Upgrades (Smus)

Chapter 1 9 Configuring Active Buffer Monitoring

Configuring Active Buffer Monitoring

Configuring Traffic Forwarding Modes

Quick Links

Related Manuals for Cisco Nexus 3548

Summary of Contents for Cisco Nexus 3548