docs: update Work/C9300GX_2_Build
This commit is contained in:
Administrator
John Smith
parent
51056f845d
commit
57ca6f6598
1 changed files with 5 additions and 118 deletions
|
|
@ -2,7 +2,7 @@
|
|||
title: C9300GX Initial Build
|
||||
description:
|
||||
published: true
|
||||
date: 2026-02-19T20:50:41.541Z
|
||||
date: 2026-02-19T20:53:59.281Z
|
||||
tags:
|
||||
editor: markdown
|
||||
dateCreated: 2026-02-19T20:50:41.541Z
|
||||
|
|
@ -26,7 +26,7 @@ AT1EU-NEXUS-2 is the **secondary** switch in a vPC pair (role priority 10 — sa
|
|||
## Cut-and-Paste Configuration
|
||||
|
||||
```
|
||||
version 10.3(7) Bios:version 07.71
|
||||
conf t
|
||||
switchname AT1EU-NEXUS-2
|
||||
|
||||
! --- QoS: Jumbo Frame Policy ---
|
||||
|
|
@ -347,7 +347,6 @@ vpc domain 1
|
|||
auto-recovery
|
||||
|
||||
! --- SVI ---
|
||||
interface Vlan1
|
||||
|
||||
interface Vlan502
|
||||
no shutdown
|
||||
|
|
@ -370,20 +369,6 @@ interface port-channel3
|
|||
switchport block unicast
|
||||
vpc 3
|
||||
|
||||
interface port-channel4
|
||||
description //Trunk 500e X2
|
||||
switchport mode trunk
|
||||
switchport access vlan 67
|
||||
switchport trunk native vlan 66
|
||||
switchport trunk allowed vlan 2-66,68-4094
|
||||
spanning-tree port type edge trunk
|
||||
spanning-tree bpduguard enable
|
||||
spanning-tree guard root
|
||||
mtu 9216
|
||||
switchport block unicast
|
||||
vpc 4
|
||||
|
||||
interface port-channel5
|
||||
|
||||
interface port-channel10
|
||||
description //Trunk Peer - Allow STP
|
||||
|
|
@ -506,7 +491,6 @@ int e1/1 - 26
|
|||
exit
|
||||
interface breakout module 1 port 1 map 25g-4x
|
||||
interface breakout module 1 port 5 map 25g-4x
|
||||
interface breakout module 1 port 9 map 25g-4x
|
||||
|
||||
! --- Physical Interfaces: Breakout (UCS/A70) ---
|
||||
interface Ethernet1/1/1
|
||||
|
|
@ -617,59 +601,7 @@ interface Ethernet1/5/4
|
|||
channel-group 132 mode active
|
||||
no shutdown
|
||||
|
||||
! --- Physical Interfaces: HLCI Access Ports ---
|
||||
interface Ethernet1/9/1
|
||||
description //Access L4 HLCI MAD HATTER - Allow STP BPDU
|
||||
switchport access vlan 702
|
||||
switchport trunk native vlan 66
|
||||
spanning-tree port type edge
|
||||
spanning-tree bpduguard disable
|
||||
spanning-tree bpdufilter disable
|
||||
mtu 9216
|
||||
storm-control broadcast level 40.00
|
||||
storm-control unicast level 50.00
|
||||
udld enable
|
||||
no shutdown
|
||||
|
||||
interface Ethernet1/9/2
|
||||
description //Access L4 HLCI JAVELIN - Allow STP BPDU
|
||||
switchport access vlan 721
|
||||
switchport trunk native vlan 66
|
||||
spanning-tree port type edge
|
||||
spanning-tree bpduguard disable
|
||||
spanning-tree bpdufilter disable
|
||||
mtu 9216
|
||||
storm-control broadcast level 40.00
|
||||
storm-control unicast level 50.00
|
||||
switchport block unicast
|
||||
udld enable
|
||||
no shutdown
|
||||
|
||||
interface Ethernet1/9/3
|
||||
description //Access L4 HLCI FOXHOUND - Allow STP BPDU
|
||||
switchport access vlan 804
|
||||
switchport trunk native vlan 66
|
||||
spanning-tree port type edge
|
||||
spanning-tree bpduguard disable
|
||||
spanning-tree bpdufilter disable
|
||||
storm-control broadcast level 40.00
|
||||
storm-control unicast level 50.00
|
||||
switchport block unicast
|
||||
udld enable
|
||||
no shutdown
|
||||
|
||||
interface Ethernet1/9/4
|
||||
description //Access L4 HLCI Rock (MLS) - Allow STP BPDU
|
||||
switchport access vlan 814
|
||||
switchport trunk native vlan 66
|
||||
spanning-tree port type edge
|
||||
spanning-tree bpduguard disable
|
||||
spanning-tree bpdufilter disable
|
||||
storm-control broadcast level 40.00
|
||||
storm-control unicast level 50.00
|
||||
switchport block unicast
|
||||
udld enable
|
||||
no shutdown
|
||||
|
||||
! --- Physical Interfaces: Standard Ports ---
|
||||
interface Ethernet1/23
|
||||
|
|
@ -776,9 +708,6 @@ line vty
|
|||
exec-timeout 5
|
||||
access-class SWITCH_MGMT in
|
||||
|
||||
! --- Boot ---
|
||||
boot nxos bootflash:/nxos64-cs.10.3.7.M.bin
|
||||
|
||||
! --- Logging ---
|
||||
logging ip access-list cache entries 8001
|
||||
logging logfile LOG_FILE 6 size 4096
|
||||
|
|
@ -786,46 +715,7 @@ logging server 15.0.2.146 6
|
|||
logging server 15.0.2.222 6
|
||||
logging level authpri 6
|
||||
|
||||
! --- Telemetry ---
|
||||
telemetry
|
||||
destination-profile
|
||||
use-nodeid timba-6750aed76f7261301f12894a
|
||||
destination-group timba-6750aed76f7261301f12894a-0
|
||||
ip address 15.0.2.238 port 443 protocol HTTP encoding JSON
|
||||
sensor-group timba-6750aed76f7261301f12894a-0
|
||||
data-source NX-API
|
||||
path "show system resources all-modules"
|
||||
sensor-group timba-6750aed76f7261301f12894a-1
|
||||
data-source NX-API
|
||||
path "show module"
|
||||
sensor-group timba-6750aed76f7261301f12894a-2
|
||||
data-source NX-API
|
||||
path "show environment power"
|
||||
sensor-group timba-6750aed76f7261301f12894a-3
|
||||
data-source NX-API
|
||||
path "show interface fc regex *"
|
||||
sensor-group timba-6750aed76f7261301f12894a-4
|
||||
data-source DME
|
||||
path sys/ch depth 1 query-condition query-target=subtree&target-subtree-class=eqptSensor
|
||||
sensor-group timba-6750aed76f7261301f12894a-5
|
||||
data-source DME
|
||||
path sys/ch query-condition query-target=subtree&target-subtree-class=eqptSupC
|
||||
sensor-group timba-6750aed76f7261301f12894a-6
|
||||
data-source DME
|
||||
path sys/ch query-condition query-target=subtree&target-subtree-class=eqptFt
|
||||
sensor-group timba-6750aed76f7261301f12894a-7
|
||||
data-source DME
|
||||
path sys/intf query-condition query-target=subtree&target-subtree-class=ethpmPhysIf filter-condition updated(ethpmPhysIf.operSt)
|
||||
subscription 578
|
||||
dst-grp timba-6750aed76f7261301f12894a-0
|
||||
snsr-grp timba-6750aed76f7261301f12894a-0 sample-interval 300000
|
||||
snsr-grp timba-6750aed76f7261301f12894a-1 sample-interval 300000
|
||||
snsr-grp timba-6750aed76f7261301f12894a-2 sample-interval 300000
|
||||
snsr-grp timba-6750aed76f7261301f12894a-3 sample-interval 300000
|
||||
snsr-grp timba-6750aed76f7261301f12894a-4 sample-interval 300000
|
||||
snsr-grp timba-6750aed76f7261301f12894a-5 sample-interval 300000
|
||||
snsr-grp timba-6750aed76f7261301f12894a-6 sample-interval 300000
|
||||
snsr-grp timba-6750aed76f7261301f12894a-7 sample-interval 0
|
||||
|
||||
```
|
||||
|
||||
---
|
||||
|
|
@ -872,21 +762,18 @@ Same `Atom` VRF with default route to 15.0.2.254. Vlan502 SVI is at 15.0.2.122/2
|
|||
### Physical Interfaces
|
||||
- **Breakout mapping:** Ports 1, 5, 9 broken out as 4x25G — same as NEXUS-1.
|
||||
- **Eth1/1/1–1/1/2 → Po126 (UCS-B):** The UCS FI cross-connection is intentionally reversed vs NEXUS-1 (NEXUS-1 Eth1/1/1–1/1/2 go to Po125/UCS-A). This is correct behavior for dual-homed UCS FI connectivity.
|
||||
- **Eth1/9/1–1/9/4:** L4 HLCI access ports (Mad Hatter, Javelin, Foxhound, Rock MLS) — note these are L4 VLANs (702, 721, 804, 814) vs. L3 VLANs on NEXUS-1, providing per-switch HLCI layer segregation.
|
||||
- **Eth1/27–1/28:** vPC peer-link → Po10
|
||||
- **Eth1/24–1/25:** 9300 uplink → Po124
|
||||
- **Eth1/26:** 500e-X1 → Po3
|
||||
- **Eth1/23:** NetApp XFER standalone (not in a port-channel)
|
||||
- **Disabled ports:** Same hardening policy as NEXUS-1
|
||||
|
||||
### Telemetry
|
||||
Same Timba streaming telemetry configuration as NEXUS-1, with a unique node ID. Multiple subscriptions push to 15.0.2.238:443 at 300-second intervals; interface state changes are event-driven (interval 0).
|
||||
|
||||
|
||||
### Logging
|
||||
Syslog to 15.0.2.146 and 15.0.2.222, both at severity 6. Note NEXUS-1 logs to 15.0.2.146 at severity 2 — this discrepancy should be reviewed.
|
||||
|
||||
### Boot
|
||||
`bootflash:/nxos64-cs.10.3.7.M.bin`
|
||||
|
||||
|
||||
---
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue