取消
显示结果 
搜索替代 
您的意思是: 
cancel
公告

December 2020

1243
查看次数
10
有帮助
2
回复
qianlu@cisco.com
Cisco Employee

关于N9K/N3K VPC设备升级/或者对端防火墙切换演练的相关问题

很多用户都遇到过升级VPC设备的时候,如何升级?以及升级的设备的先后顺序? 

 

或者一些切换演练中,先断peer-link和先断keep-alive的区别及影响?

 

或者VPC配置中 配置VPC抢占和不配抢占的作用及影响?

 

请踊跃讨论。

2 条回复2
Yanli Sun
Community Manager

欢迎楼主多多分享

Rps-Cheers
Rising star

借官方文档讨论一发:

vPC Upgrade and Downgrade Procedure
In vPC topologies, the two peer switches usually must be upgraded individually. An upgrade on one peer switch does not automatically update the vPC peer switch.

However, Cisco NX-OS Releases 7.0(3)F3(3c) and 7.0(3)F3(4) are not compatible with Cisco NX-OS Release 9.2(x) for vPC peer switches. Both vPC peers must be upgraded simultaneously to Cisco NX-OS Release 9.2(x) to avoid one switch running a 7.0(3)F3(x) release and the other switch running 9.2(x). Optionally, if the switches are being upgraded from Cisco NX-OS Release 7.0(3)F3(4), you can use the following procedure to minimize the traffic impact during upgrade.

<snip>

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/92x/upgrade/guide/b-cisco-nexus-9000-nx-os-software-upgrade-downgrade-guide-92x/b-cisco-nexus-9000-nx-os-software-upgrade-downgrade-guide-92x_chapter_0110.html#id_74490

 

Peer-link先断,keepalive后断
1)VPC Secondary关闭所有VPC member port和VPC vlan SVI;
2)peer-link和keepalive均恢复之后,被关闭的端口自动恢复。

Keepalive先断,peer-link后断
1)两台设备处于双A状态(vpc peer的角度);
2)两个VPC peer均会发送BPDU,各自为根;
3)原来的流量可正常转发;

 

vPC里面角色好像是不可抢占的吧?

vPC Role
Although both vPC switches appear as a single switch to a downstream device, among themselves two vPC switches have clearly defined vPC roles: vPC Primary and vPC Secondary.

vPC roles are non-preemptive, which means a device can be configured as vPC primary, but operate as vPC secondary peer device. This can happen in this scenario:

When the original primary device fails, the secondary vPC device becomes the new primary device.
When the system recovers itself, the previously primary device is now the secondary device and vice versa.
vPC role defines which of the two vPC peer devices processes Bridge Protocol Data Units (BPDUs) and responds to Address Resolution Protocol (ARP) requests. vPC role also defines a set of actions to be taken by vPC primary and vPC secondary in response to vPC peer-link down situation.

https://www.cisco.com/c/en/us/support/docs/ios-nx-os-software/nx-os-software/212589-understanding-vpc-election-process.html

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rps-Cheers | If it solves your problem, please mark as answer. Thanks !
创建
认可您的同行
Content for Community-Ad