Hi all,
I have a Cisco Switch NEXUS 3048 with nx-os 6.0(2)U3(7) and licence LAN_ENTERPRISE.

I want to know if the following if possible:

• I have a simple network for an experiement.
• I have a Router #1, which gives me the up-link to the rest of our network and to the internet.
• I have a Cisco Switch NEXUS 3048, which is connected to Router #1.
• I have 4 machines that are connected to the Cisco Switch:
  • 2 machines #A and #B via interface Ethernet 1/1 and 1/2
  • 2 machines #C and #D via interface Ethernet 1/3 and 1/4
• I want #A and #B to be part of the network "net1" subnet.
• I want #C and #D to be part of the network "net2" subnet
• I want to route traffic from net1 to my up-link Router #1.
• I want to route traffic from net2 to my up-link Router #1.

                            +---------------+
                            | Router #1     |
                            | (not a cisco) |
                            | 172.16.0.0/16 |
                            | Gateway:      |
                            | 172.16.0.1    |
                            +---------------+


+-------------------------+------------------- ----------------------------+
| Cisco Switch NEXUS 3048 - licence LAN_ENTERPRISE                         |
| nx-os 6.0(2)U3(7)                                                        |
|                                                                          |
|   +------------------+    +------------------+    +------------------+   |
|   | VRF net1         |    | VRF net2         |    | VRF uplink       |   |
|   | 172.16.196.0/22  |    | 172.16.228.0/22  |    | 172.16.0.0/16    |   |
|   |                  |    |                  |    |                  |   |
|   | Interfaces eth:  |    | Interfaces eth:  |    | Interfaces eth:  |   |
|   | 1/1: 172.16.196.1|    | 1/3: 172.16.228.1|    | 1/46: 172.16.0.2 |   |
|   | 1/2: 172.16.196.2|    | 1/4: 172.16.228.2|    |                  |   |
|   +------------------+    +------------------+    +------------------+   |
|                                                                          |
+--------------------------------------------------------------------------+

Figure 1.

There are several ways to achieve this topology. I heard about VRF virtual routing and forwarding and VRF Route Leaking. I want to know if I can create multiple routers in my cisco switch and route their traffic outside the switch.

This way by taking advantage of VRF, with only 1 physical switch, I could have multiple routers.

My Cisco switch seems to be compatible with VRF-lite. I don't know if Figure 1. is possible to achieve.

My idea was to create 1 VRF for net1 and 1 VRF for net2. Then I want to route
the traffic of net1 to Router #1. I want the same for net2.

Creating VRF is OK and it works. Creating the VRF L3 interfaces is OK with
VRF member**bleep**.

But I don't understand how to do "route leaking" or how to route VRF net1 and VRF net2 outside of the cisco nexus. I assume I need a third VRF, which is connected to Router #1.

And I assume I must do route leaking between:

(VRF net1) <--> (VRF uplink) <--------> (Router #1)

and 

(VRF net2) <--> (VRF uplink) <--------> (Router #1)

This is what I have read so far:

• https://www.randco.fr/blog/2015/echanger-des-routes-entre-plusieurs-vrf/
  
  • it is iOS and not nx-os. I have nx-os.
    
  • it uses "route distinguisher rd", rd is not supported by VRF-lite
• http://web.archive.org/web/20110411080632/http://www.cisco.com:80/web/FR/documents/pdfs/newsletter/ciscomag/2010/01/ciscomag_30__virtualization-segmentation.pdf
  • routing between VRF using mBGP
• http://packetlife.net/blog/2010/mar/29/inter-vrf-routing-vrf-lite/
  • again this is iOS not nx-os
• https://docplayer.net/48637398-Nx-os-routing-and-layer-3-switching.html
  • starting at slide 42
  • VRF-lite static route (slide 47)
    • Is it enough for my use case ?
  • PBR config (slide 48)
    • I can not "set vrf xxxx" in a route-map, I don't have this option
    • with BGP (slide 50)
      • I don't understand how to configure x:y when "route-target export x:y"
      • I don't have MPLS license
• https://mellowd.co.uk/ccie/?p=2923
  • I still don't understand how to set or choose x:y when "route-target export x:y".
  • I assume that you choose x:y, and you have to remember and take it into account when you set the other route-target on other VRFs ?
• https://community.cisco.com/t5/switching/nexus-vrf-lite-static-route-leak/td-p/1830969
  • other PBR routing example
  • I can not "set vrf xxxx" in a route-map, I don't have this option
• https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus3000/sw/unicast/602_u1_1/l3_nx-os.pdf
  • nx-os 6.0 full documentation
  • Chapter 14 - Guidelines and Limitations for VRF Route Leaking :
    • "VRF route leaking requires an Enterprise license, and BGP must be enabled." -> I have an LAN Enterprise license. I have "feature BGP"

If it is possible, what is the easiest way to achieve my simple use case ?


Thank you for your time reading.
--
TheDetective