Cisco Nexus 9000 Series Configuration Manual page 68
Nx-os intelligent traffic director configuration guide, release 9.x
Hide thumbs
Also See for Nexus 9000 Series:
- Configuration manual (562 pages) ,
- Troubleshooting manual (126 pages) ,
- Quick start configuration manual (6 pages)
Table of Contents
Advertisement
Configuration Example: Firewall in Dual-Switch Sandwich Mode with vPCs
ip address 192.168.100.10/24
interface port-channel 11
description To_ASA-1_INSIDE
switchport mode access
switchport access vlan 100
vpc 11
interface ethernet 4/1
description To_ASA-1_INSIDE
switchport mode access
switchport access vlan 100
channel-group 11 mode active
switch #2:
interface vlan 20
description OUTSIDE_VLAN
ip address 192.168.20.10/24
interface vlan 200
description FW_OUTSIDE_VLAN
ip address 192.168.200.10/24
interface port-channel 21
description To_ASA-1_OUTSIDE
switchport mode access
switchport access vlan 200
vpc 11
interface ethernet 4/25
description To_ASA-1_OUTSIDE
switchport mode access
switchport access vlan 200
channel-group 21 mode active
Step 2: Configure ASA.
interface port-channel 11
description INSIDE
vlan 100
nameif inside
security-level 100
ip address 192.168.100.111 255.255.255.0
interface port-channel 21
description OUTSIDE
vlan 100
nameif outside
security-level 100
ip address 192.168.200.111 255.255.255.0
same-security-traffic permit inter-interface
interface TenGigabitEthernet 0/6
description CONNECTED_TO_SWITCH-A-VPC
channel-group 11 mode active
no nameif
no security-level
interface TenGigabitEthernet 0/7
description CONNECTED_TO_SWITCH-B-VPC
channel-group 11 mode active
no nameif
Cisco Nexus 9000 Series NX-OS Intelligent Traffic Director Configuration Guide, Release 9.x
60
Configuring ITD
Hide quick links:
Advertisement
Table of Contents
