03-22-2021 06:38 AM - edited 03-22-2021 08:32 AM
I have a 93180YC-FX2 vPC pair that is soon to go into production. I configured the vPC peer-keepalive via the management VRF, as per best practices on this single-module device. I was then asked to move OOB to what is essentially a one-off, "kinda supported" network. I pointed to the vPC peer-keepalive as my justification for keeping OOB on a supported production management network. I was told that the only reason this is the recommendation is to save front panel ports, but in this case we have a lot more than we actually need.
Is this true? Are there other reasons for this general recommendation?
Thanks!
Solved! Go to Solution.
03-22-2021 07:47 AM
Hi @KELLEYD
First, I think you have a typo in the pst, when you say " I configured the vPC peer-link via the management VRF,", which I believe you mean the peer keepalive, right?
Second, the general recommendation is to use the mgmt0 interface for PKA because:
With this in mind, is better to have the PKA over the mgmt0 (regardless if you connect the management interface to a OOB mgmt switch, or directly between the vPC peer switches).
Hope it helps,
Sergiu
03-22-2021 07:47 AM
Hi @KELLEYD
First, I think you have a typo in the pst, when you say " I configured the vPC peer-link via the management VRF,", which I believe you mean the peer keepalive, right?
Second, the general recommendation is to use the mgmt0 interface for PKA because:
With this in mind, is better to have the PKA over the mgmt0 (regardless if you connect the management interface to a OOB mgmt switch, or directly between the vPC peer switches).
Hope it helps,
Sergiu
03-22-2021 08:32 AM
Thank you! I really appreciate the insight. All of the above make perfect sense, actually.
And yes, I meant peer-keepalive. I will correct this.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide