12-18-2018 09:14 AM - edited 03-08-2019 05:29 PM
Hi Guys;
We are deploying a new Cisco DNA cluster. When trying to add the four virtual IP addresses as per the instructions it does not allow to.
Any ideas on how to add them?
12-18-2018 09:20 AM
If you can, Can you please provide the 4 VIP addresses with subnet masks?
Also, How are adding the 4 VIP IP addresses?
They should all be on a Single Line like: 192.168.1.254 192.168.2.254 192.168.3.254 192.168.4.254
Thanks
12-18-2018 09:46 AM
Hi Tomas and thanks for your quick response.
We are entering the ip's as stated in Step 10 of the Cisco Digital Network Architecture Center Appliance Installation Guide, Release 1.2.5 but it is resulting in invalid ip address message.
In addition, which interface should have the default route configured?
12-18-2018 09:52 AM
There can be a different issue and that is why I need to see that actual ip addresses & subnet mask you are using. If you do not want it to be public the PM me the addresses.
In regards to default gateway, that is typically on the Network Adapter that will be used to access the internet. If you follow the recommended configuration, that would be the 1 gig interface (Network Adapter #3) that is used for the Internet\Cloud connectivity.
T.
12-18-2018 10:10 AM
Hi Tomas;
I sent you the IP's.
Our switches will reside in different subnets. How the DNA center will be able to reach those subnets?
In addition, can the interfaces and routes be changed through the MAGLEV?
Thanks again.
Regards,
12-18-2018 10:43 AM
The Cluster link is typically on a private VLAN in which is solely used to communicate between the other Cisco DNAC Nodes in the cluster. As a result, no default gateway or static route is needed for the Cluster link.
The Enterprise link will use Static Routes to communicate with devices in the Enterprise.
The Cloud link will normally be configured with Default Gateway.
The Management link will use Static Routes to communicate with devices in the management space.
To make changes to NON-ClusterLink interfaces, you can use the "sudo maglev-config update" on the CLI.
12-18-2018 10:50 AM
Ok, to be clear: the default gateway should be set on the GUI interface only(we will not be using the cloud interface)?
In addition, through which interface does the DNA will communicate to the AAA server?
Thanks.
Regards,
12-18-2018 11:02 AM
You can access the UI from any interface.
The 'Default Gateway" should be on the interface in which the Cisco DNAC will use for "Internet" connectivity.
12-18-2018 11:09 AM
Ok. Through which interface will the DNA access the AAA server?
Thanks again!
Regards,
12-18-2018 11:39 AM
You configure ISE or AAA Server on the CISCO DNAC. At this point, it is normal routing. The Cisco DNAC will use the Static Routes or the default gateway based on which interface has access to the ISE or AAA Target IP Address.
12-18-2018 11:55 AM
Ok. Can we setup only cluster and Enterprise interfaces and leave the rest unused?
We will access the Internet through the Enterprise interface.
12-18-2018 12:16 PM
Yes.
You would access the UI thru the Enterprise Network.
12-18-2018 12:19 PM
Got it.
One more detail: we are connecting the DNA center to Cisco Nexus 6000 and voice commands are not available on the interfaces.
How should the interfaces be configured on the Nexus?
12-19-2018 07:05 AM
Hi Tomas;
We are facing two issues:
First, we are still getting Invalid IP address when trying to add a second VIP.
Second, we are trying to create a AAA server for user authentication into the DNA with an ACS. Does the DNA is able to work with ACS for authentication?
12-19-2018 09:27 PM - edited 12-19-2018 09:28 PM
your DNAC is shipped with older code (unfortunately you can not confirm unless installed), in older code it does not support multiple VIP, in newer code like 1.2.5 it does.
when you add 1, make sure its Cluster VIP
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: