Our two cisco firewalls (Cisco ASA on firepower, active/standby) are currently connected to two Catalyst 6509s.
We want to move these firewalls to Nexus 9500s.
When we connected ASA ports to Nexus, the ports on nexus showed "connected" but the ports on the firewall appeared down. Bouncing ports on either side did not help. Taking ports out of port-channels and bouncing them did not help either. Rebooted the standby firewall to see if its ports connect, but it did not work.
Opened a case with Cisco. They checked the nexus side and the firewall side, but did not find any misconfigurations or issues.
Here is a list of troubleshooting steps I completed today, but nothing worked.
set the Nexus side to the Port-channel configuration. Reboot the firewall.
Remove vlan configuration from two ports on N9Ks. Bounce ports on both sides (Nexus and FW).
remove the port-channel config nexus Remove FW ports from port-channel and assign them to a logical device. Bounce ports
shut ports on both sides. Apply lacp graceful-convergence on nexus side. Enable Nexus ports. Enable FW. Lacp ports become suspended. FW ports are still down.
I attached a diagram example of one firewall and it's two ports being connected to both nexuses. I am currently working on troubleshooting connectivity of two firewall ports (standby firewall) to two nexuses.
Hi Folks,could anybody explain me the difference between the API Calls with the "node" keyword in between?So when do i need thehttps://apic-ip-address/api/node/mo/.xmlvs.https://apic-ip-address/api/mo/uni.xmlbest Regards
Hello,we have a UCS mini implementation with a pair of FI6324s and we would like to acquire a pair of Nexus switches which will be strictly used for the interconnection between the FIs and 3 Netapp AFF C190 Storage Arrays. The blades (four actually) are B...
Hi All, Is there any CLI command available on Cisco ACI Leaf to check the live traffic statistics on particular interface...as like we are checking with IOS / NX-OS with "sh interface eth1/2" This command is working on Leaf But not showing...
I'm trying to find some documentation for the MDS9148S Switch that proves the support of the following port types: F_Port (Fabric), M_Port (Mirror Port) and E_Port (Switch-to-Switch). I easily found F_Port and E_Port:Fiber Channel standard port types...
I am trying to find out where zoning changes are logged to. For example, an admin creates a new zone, adds it to the active zoneset and commits the changes (we usually do this via CLI). A little while later we get a report of an issue and...