CCIE Data Center Cheat Sheet: by Via

Download as pdf or txt
Download as pdf or txt
You are on page 1of 4

CCIE Data Center Cheat Sheet

by ewibowo via cheatography.com/25163/cs/6495/


VLAN

Fabricpath

HSRP (cont)

HSRP Localisation (cont)

vlan dot1Q tag native

install feature-set fabricpath

ip 10.1.41.254

mac-list

feature-set fabricpath

authentication md5 key-chain

OTV_HSRP_VMAC_deny seq 30

vlan 1

mychain

permit 0000.0000.0000

name VLAN1

fabricpath switch-id 300

timers 1 3

0000.0000.0000

preempt

fabricpath timers linkup-delay

priority 255

20

key chain mychain

fabricpath domain default

key 1

root-priority 255

keystring CCIEDC

SVI (Switch Virtual Interface)


feature interface-vlan
!
interface vlan 41
no shutdown
ip address 10.1.41.252/24

!
interface Vlan888
vrf member vpc-keepalive
ip address 8.8.8.1/30

match mac-list
OTV_HSRP_VMAC_deny
!
otv-isis default
vpn Overlay0

HSRP Localisation

mode fabricpath

vrf context vpc-keepalive

permit 10

maximum-paths 2
vlan 34

VRF

route-map OTV_HSRP_filter

!
interface Ethernet1/1
switchport mode fabricpath
fabricpath isis metric 50

redistribute filter route-map


OTV_HSRP_filter

! VACL Filter:
ip access-list ALL_IPs
10 permit ip any any

Jumbo Frame

N7K:

ip access-list HSRP_IP
10 permit udp any 224.0.0.2/32 eq
1985

VRRP

20 permit udp any 224.0.0.102/32

system jumbomtu 9216


!
int e3/1
mtu 9216

VPC

feature vrrp

eq 1985

vpc domain 100

interface Vlan31

vlan access-map

no shutdown

HSRP_Localization 10

ip address 10.1.31.2

match ip address HSRP_IP

vrrp 1

action drop

priority 254

vlan access-map

class-fcoe

address 10.1.31.1

HSRP_Localization 20

pause no-drop

no shutdown

match ip address ALL_IPs

mtu 2158

action forward

class type network-qos

vlan filter HSRP_Localization

class-default

vlan-list 3001-3002

mtu 9216

role priority 1
system-priority 1
peer-keepalive destination
8.8.8.2 source 8.8.8.1 vrf vpckeepalive
!
interface port-channel100
vpc peer-link

HSRP

Verification:
show vpc consistency-parameters
global

feature hsrp
!
interface Vlan41
no shutdown

VPC+
vpc domain 200
fabricpath switch-id 200
!

ip address 10.1.41.252/24
hsrp version 2
hsrp 1

!
N5K-1:
policy-map type network-qos
jumbo
class type network-qos

! OTV MAC route filter:

system qos

mac-list
OTV_HSRP_VMA
C_deny seq 10
deny 0000.0c07.ac00 ffff.ffff.ff00
mac-list
OTV_HSRP_VMA
C_deny seq 20

interface port-channel100

deny 0000.0c9f.f000 ffff.ffff.f000

switchport mode fabricpath

service-policy type network-qos


jumbo
Netflow
feature netflow
!

vpc peer-link

flow exporter nf_collector


destination 10.1.1.1
By ewibowo

Published 23rd December, 2015.

Sponsored by Readability-Score.com

cheatography.com/ewibowo/

Last updated 17th January, 2016.

Measure your website readability!

Page 1 of 4.

https://readability-score.com

CCIE Data Center Cheat Sheet

by ewibowo via cheatography.com/25163/cs/6495/


Netflow (cont)

EIGRP (cont)

Enhanced VPC (cont)

MST (cont)

source vlan1

ip summary-address eigrp 1

inter eth 1/1-2

name ccie

10.1.40.0/22

channel-group 101

revision 5

no shut

instance 1 vlan 41,42

version 9
!
flow monitor nf_monitor
record netflow-original
exporter NetFlowCollector
!
interface Vlan1
ip flow monitor nf_monitor

PIM

inter po101

feature pim
!
ip pim rp-address 20.0.0.1
!

input

interface Ethernet4/1

Verification:

no shutdown

ip pim sparse-mode

show run netflow


show flow exporter
show flow monitor

Verification:

OSPF

OTV

feature ospf

feature otv

interface Ethernet4/1
ip router ospf 1 area 0

license fcoe module 3


port-channel load-balance srcdst ip-l4port module 3

10 permit ip any 10.1.40.0/24


20 permit tcp any 10.1.41.0/24

40 permit ip any any

otv site-identifier 0x1


interface Overlay1
otv join-interface Ethernet4/1
otv control-group 239.1.1.1

EIGRP

otv extend-vlan 90

feature eigrp

otv data-group 232.1.1.0/24


no shutdown

feature npiv
feature lacp

Default VDC:

feature lldp

clock protocol ntp vdc 3

vsan database

VDC3:

vsan 100

ntp source-interface eth 4/1

no shutdown

Syslog

Verification:

logging server 10.0.0.1

show ip igmp interface brief

logging source-interface lo0

autonomous-system 1
router-id 1.1.1.1
redistribute direct route-map
SVI

show otv vlan


show otv adjacency
show otv route

!
interface Ethernet4/1

feature fex

ip router eigrp 1

no ip redirects

fex 101

vlan 100

Verification:
show vlan fcoe
show policy-map system
show run ipqos

MST
spanning-tree mode mst

vfc

!
Enhanced VPC

!
fcoe vsan 100

show otv

bfd

vdc Storage_VDC id 2 type

feature-set fcoe

NTP

route-map SVI permit 10

router eigrp 1

Storage VDC:

ip igmp version 3

default-nq-7e-policy

ip access-group WAN in

!
match interface vlan 40

service-policy type network-qos

allocate fcoe-vlan-range 100

inter eth 4/1

ntp server 10.0.0.1 prefer

interface Ethernet4/1

system qos

storage

ip ospf network point-to-point

feature bfd

install feature-set fcoe

no shut

30 deny ip any 10.1.41.0/24

otv site-vlan 80

Default VDC:

vpc 101

eq 23

router-id 1.1.1.1

FCoE - Storage VDC

fex associate 101

ip access-list WAN

show run pim


show pim neighbor

router ospf 1

switchport mode fex

ACL

show flow interface

spanning-tree mst 1 root primary

switchport

spanning-tree mst configuration

interface Ethernet 3/1


switcport
switchport mode trunk

diag boot level bypass


!
By ewibowo

Published 23rd December, 2015.

Sponsored by Readability-Score.com

cheatography.com/ewibowo/

Last updated 17th January, 2016.

Measure your website readability!

Page 2 of 4.

https://readability-score.com

CCIE Data Center Cheat Sheet

by ewibowo via cheatography.com/25163/cs/6495/


vfc (cont)

F san-portchannel

E san-portchannel (cont)

FCIP with Firewall

switchport trunk allowed vlan

feature npiv

switchport rate-mode dedicated

MDS-1:

200

feature fport-channel-trunk

spanning-tree port type edge

trunk

interface port-channel 100

channel mode active

interface vfc 4

switchport mode f

bind interface Ethernet 3/1

switchport mode trunk on

switchport mode F

switchport trunk allowed vsan

switchport trunk allowed vsan 2

100

switchport rate-mode shared

vlan 200

fcoe vsan 2

interface fc1/9-12

channel-group 100 force

vsan database

no shutdown

ip addr 10.3.1.1 255.255.255.252


switchport mtu 2300

feature fcip

no shut

feature fcsp

!
fcsp dhchap password CCIEDC
fcsp dhchap devicename
NeighborSwitchWWN password
CCIEDC

E san-portchannel

switchport mode e

switchport mtu 2300

switchport trunk mode on

no shutdown

switchport trunk allowed vsan 1

show int vfc 4 trunk vsan

feature fcoe

fcip profile 1

ip address 10.3.1.1

vsan database

vsan 200

vsan database

vsan 200 loadbalancing src-dst-

vsan 100

id

! SID/DID

interface port-channel 1

port-channel load-balance

channel mode active

ethernet source-dest-ip

fcsp on

switchport mode e

fcdomain domain 0x1 static vsan

switchport trunk allowed vsan

200

add 100

fcdomain restart vsan 200

interface fcip1

interface san-port-channel 22

use-profile 1

channel mode active

peer-info ipaddr 10.3.1.2

switchport mode E

channel-group 1 force

switchport trunk mode on

no shutdown

interface port-channel1
switchport
switchport mode trunk
switchport trunk allowed vlan
100
no shutdown
!
interface Ethernet4/1
channel-group 1 force mode
active
!
interface vfc-po1
switchport mode F
switchport trunk allowed vsan
100

switchport trunk allowed vsan


add 200

passive-mode

port 3005

peer-info ipadd 10.3.1.2

ip address 10.3.1.1

N5K:

feature lacp

ip add 10.3.1.1

use-profile 10

int Gi1/1

show int bri fcoe

vfc-portchannel

fcip profile 10

int fcip 10

255.255.255.252

vsan 2 interface vfc 4


Verification:

int gi1/3
FCIP with FCSP

no shut
!
MDS-2:
int gi1/3
ip add 10.3.1.2 255.255.255.252
switchport mtu 2300
no shut
!
fcip profile 10
ip add 10.3.1.2
!
int fcip 10
use-profile 10
peer-info ipadd 10.3.1.1 port
3005
switchport mode e
switchport trunk mode on
switchport trunk allowed vsan 1
no shut

NeighborSwitchWWN:
show wwn switch

no shutdown
!
vsan database
vsan 100 interface vfc-po 1

By ewibowo

Published 23rd December, 2015.

Sponsored by Readability-Score.com

cheatography.com/ewibowo/

Last updated 17th January, 2016.

Measure your website readability!

Page 3 of 4.

https://readability-score.com

CCIE Data Center Cheat Sheet

by ewibowo via cheatography.com/25163/cs/6495/


NPV

FCoE Host

N1KV - QoS (cont)

feature fcoe

int eth1/20

port-profile type vethernet iscsi

feature npv

switchport

service-policy type qos input

switchport mode trunk

silver

slot 2

switchport trunk allowed vlan

port 1-16 type fc

1,100

system jumbomtu 9000

poweroff module 2

spanning-tree port type edge

no poweroff module 2

trunk

port-profile type ethernet

no shut

system-uplink

npv auto-load-balance

int vfc 20

disruptive

bind interface eth1/20

mtu 9000

switchport mode F
switchport trunk allowed vsan

FC Zone
Creating zone:
zoneset name zs_vsan_100
vsan 100
zone name zone_vsan_100

100

N1KV - Setup
! Maximum number of ports in a
non-uplink port-profile

no shut

port-profile default max-ports 8

N1KV - manual subgroup

member pwwn

port-profile type ethernet system-

20:00:00:25:b5:00:00:01

uplink

! dv Port ID persists for the life of


veth
port-profile default port-binding
static

member pwwn

channel-group auto mode on

50:00:00:00:00:00:00:01

sub-group manual

zoneset activate name

interface e3/1

zs_vsan_100 vsan 100

sub-group-id 0

! No zone (useful for

To find the interface number:

port-profile type ethernet system-

troubleshooting but not for

module vem 3 execute vemcmd

uplink

production):

show port

channel-group auto mode on

! Subgroup ID should start from 0


and increase by 1 for each
additional uplink

mac-pinning relative

zone default-zone permit vsan


100

N1KV - relative subgroup

N1KV - iSCSI Multipath

! Basic mode - manual full zone


database distribution:
zoneset distribute vsan 100
! Enhanced mode - Automatic full
zone database distribution:
zone mode enhanced
!
show zone status vsan 100

port-profile type vethernet iscsi


capability iscsi-multipath
system vlan 30
!
port-profile type ethernet
system-uplink
system vlan 1,30,40*
N1KV - QoS

Shortcuts
sh cli history config-mode
unformatted
cli alias name v2 switchto vdc
N7K-2

policy-map type qos silver


class class-default
set cos 2
!

By ewibowo

Published 23rd December, 2015.

Sponsored by Readability-Score.com

cheatography.com/ewibowo/

Last updated 17th January, 2016.

Measure your website readability!

Page 4 of 4.

https://readability-score.com

You might also like