Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2320
Views
5
Helpful
3
Replies

ACI OOB connectivity

craig.howson
Level 1
Level 1

‎11-28-2018 05:18 AM - edited ‎03-01-2019 05:43 AM

Hi

 

I am trying to change the OOB address on our spines, leafs and APIC's to fall in line with the rest of our OOB addresses. The interfaces are currently connected to 1Gbps interfaces on a 6500 and I am wanting to connect them into an old 3750 switch which only has 100Mbps interfaces. After attempting this with a single leaf it failed to communicate with anything other than its gateway so could not access it remotely (ICMP or SSH).

 

In the Cisco docs the first thing it states is that the connection link must be 1Gbps.

 

Has anyone had OOB MGMT working to 9k Nexus switches connected to just 100Mbps? If not, what is the reason it needs a full 1Gbps for OOB?

Labels:
0 Helpful
3 Replies 3

Jayesh Singh
Cisco Employee
Cisco Employee

‎12-06-2018 09:06 AM

Hi Craig, 

What is the model number of your leaf switches?

 

Management port supports 10/100/1000 speed. There shouldn't be any compatibility issue. I checked for 2nd generation leaf switches(93180YC-EX series) and its documented in the datasheet as well.

 

Also, are you able to ping OOB gateway from other network from where the leaf is not reachable?

 

Reference:

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/hw/n93180ycex_hig/guide/b_n93180ycex_nxos_mode_hardware_install_guide/b_n93180ycex_nxos_mode_hardware_install_guide_chapter_0100.html#task_kbl_4lq_4x

0 Helpful

craig.howson
Level 1
Level 1
In response to Jayesh Singh

‎01-14-2019 03:38 AM - edited ‎01-14-2019 03:40 AM

Hi

Thank for your response.

 

I have had a read through the document you sent and it appears as if it should work. The leaf switch is a N9K-C93180YC-EX

 

I have performed some tests....

 

Leaf switch configured with address in subnet 1 (existing) and configured my laptop with an address within subnet 1, plugged my laptop directly into the mgmt port on the switch. I can ping but cannot ssh. Should this work?

 

I tried the same test with addresses (on both my laptop and the leaf switch) in subnet 2 (the new IP range) and got the same results.... as expected.

 

Is it possible that there is additional config elsewhere in the APIC that needs changing?

0 Helpful

Remi Astruc
Level 1
Level 1
In response to craig.howson

‎01-15-2019 08:14 AM

Hi Craig,

 

Out of Band mgt requires some additional config if not already done.

 

Go in the tenant mgmt and ensure you have the following stuff in it:

- An Out-of-Band Contract, with a Filter into it (common/default to be permissive).

- A Node Management EPG, with Provided OoB Contract being the one you created before.

- An External Mgt Instance Profile, with Consumed OoB Contract being also the one you created, and Subnet 0.0.0.0/0.

- Ensure you defined your Leaf mgt IP into Node Mgt Addresses > Static Node Mgt Addresses, set with the Node Mgt EPG you created before.

 

If still does not work, check all the Faults in your System.

 

Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card

Save 25% on Day-2 Operations Add-On License