02-11-2019 04:11 AM - edited 02-18-2020 02:38 AM
Hello!
Previously I asked about this topic, than was only a plan and now we have already the Nexus switches.
Here is the current topology and next the migrated draw with 2 piecies 5548UP (L3 card + license too)
Current situation
1. ZONE-4s24 is 4pcs WS-C3850-24T in stack and only 2 switch has 10Gbps Network modul (2x2 port)
2. ZONE-4s24 has both L3 and L2 function
- Advertise server networks with OSPF
- Routing between VLAN
- Direct link to servers, blade switches, firewall etc.
- The 10Gbps moduls link use to servers not the other switches
3. ZONE-4s24 connect to Core-AB with L3 PoCh
4. Core-AB (2pcs C3850-24T) connect Core-CD L3 link with PoCh3 copper, PoCh4 is the redundant link (higher OSPF cost)
5. Core-AB is the OSPF DR of the full network, to advertise HQ and Branch Office networks
6. Core-CD is the OSPF BDR, to advertise Partner networks
Plans
1. Every 3850 will get 10Gbps network modul, so the Core-AB and Core-CD switch to connect with 2x10Gbps
2. ZONE-4s24 is 4 unit stack and i want to split 2 part (ZONE-A, ZONE-B) and they will have only L2 task
3. In current state the ZONE-4s24 doesn't has redundant link, its a SPOF and traffic from partner's network goes to Core-CD --> Core-AB --> ZONE instead of Core-CD --> Zone directly.
So I want Nexus switches connect to both switch.
4. Nexus primary and secondary have to take over L3 task of ZONA-4s24 and to link ZONE-A and ZONE-B with L2 vPC 2x10Gbps
My question is relate to 3. Routing between Nexus-CoreAB and Nexus-CoreCD
I read that after 7.3.0 IOS can be work the L3 dynamic routing, but I found only this relevant example:
http://b.shnosh.net/nexus-dynamic-routing-over-vpc-vlan/
Common routing vlan is VLAN 2 - 10.58.16.0/29.
So what I did (relevant part):
Core-AB Te1/1/3 --> N5k_prim Eth1/1
Core-AB Te2/1/3 --> N5k_secon Eth1/1
In this case I got trunk connection in port-channel 10 without ospf neigbors.
Opinions?
The 2 new Nexus are in our lab room with 2pcs spare 3850. I updated the IOS (7.3.3.) and I know to try different config versions.
Thank you
Gy.
Solved! Go to Solution.
02-17-2020 04:13 PM
I solved my problem of course in last year and migration was sucessfully. Here is the final solution, maybe somebody will to find useful.
The OSPF adjency problem reason was that i permit all vlan on the trunk...
Executed topology:
Relevant part of correct config:
Core-AB
vlan 2
name vPC-10
interface Loopback0
ip address 192.168.11.234 255.255.255.255
!
interface Port-channel1
description *Copper_PoCh->Core-CD*
no switchport
ip address 10.58.16.1 255.255.255.248
ip ospf priority 200
ip ospf cost 10
interface Port-channel10
description *N5k-vPC10-L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 2
switchport mode trunk
interface TenGigabitEthernet1/1/4
description *PoCh_10->Nexus_L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 2
switchport mode trunk
channel-group 10 mode active
interface TenGigabitEthernet2/1/4
description *PoCh_10->Nexus_L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 2
switchport mode trunk
channel-group 10 mode active
interface Vlan2
description *vPC10-N5k-primary/secondary*
ip address 10.58.16.25 255.255.255.248
ip ospf priority 100
router ospf 1
nsf cisco
passive-interface Loopback0
network 10.58.16.0 0.0.0.7 area 0
network 10.58.16.16 0.0.0.7 area 0
network 10.58.16.24 0.0.0.7 area 0
Core-CD
vlan 3
name vPC-20
interface Loopback0
description ospf adjency
ip address 192.168.11.233 255.255.255.255
interface Port-channel2
description *Copper_PoCh->Core-AB*
no switchport
ip address 10.58.16.6 255.255.255.248
ip ospf cost 10
interface Port-channel20
description *N5k-vPC20-L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 3
switchport mode trunk
interface TenGigabitEthernet1/1/4
description *PoCh_20->Nexus_L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 3
switchport mode trunk
channel-group 20 mode active
interface TenGigabitEthernet2/1/4
description *PoCh_20->Nexus_L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 3
switchport mode trunk
channel-group 20 mode active
interface Vlan3
description *vPC20-N5k-primary/secondary*
ip address 10.58.16.33 255.255.255.248
ip ospf priority 100
router ospf 1
passive-interface Loopback0
network 10.58.16.0 0.0.0.7 area 0
network 10.58.16.32 0.0.0.7 area 0
N5K-primary
vlan 2
name Nexus->CoreAB_L3
vlan 3
name Nexus->CoreCD_L3
interface Vlan2
description *** OSPF Peering CoreAB ***
no shutdown
no ip redirects
ip address 10.58.16.26/29
ip ospf cost 10
no ip ospf passive-interface
ip router ospf 1 area 0.0.0.0
interface Vlan3
description *** OSPF Peering CoreCD ***
no shutdown
no ip redirects
ip address 10.58.16.34/29
ip ospf cost 10
no ip ospf passive-interface
ip router ospf 1 area 0.0.0.0
interface port-channel10
description ***Core-AB_direction***
switchport mode trunk
no lacp suspend-individual
switchport trunk native vlan 10
vpc 10
interface port-channel20
description ***Core-CD_direction***
switchport mode trunk
no lacp suspend-individual
switchport trunk native vlan 10
vpc 20
interface Ethernet1/1
description *PoCh_10->Core-AB*
switchport mode trunk
switchport trunk native vlan 10
channel-group 10 mode active
interface Ethernet1/2
description *PoCh_20->Core-CD*
switchport mode trunk
switchport trunk native vlan 10
channel-group 20 mode active
Nk5-secondary
vlan 2
name Nexus->CoreAB_L3
vlan 3
name Nexus->CoreCD_L3
interface Vlan2
description *** OSPF Peering CoreAB ***
no shutdown
no ip redirects
ip address 10.58.16.27/29
no ip ospf passive-interface
ip router ospf 1 area 0.0.0.0
interface Vlan3
description *** OSPF Peering CoreCD ***
no shutdown
no ip redirects
ip address 10.58.16.35/29
no ip ospf passive-interface
ip router ospf 1 area 0.0.0.0
interface port-channel10
description ***Core-AB_direction***
switchport mode trunk
no lacp suspend-individual
switchport trunk native vlan 10
vpc 10
interface port-channel20
description ***Core-CD_direction***
switchport mode trunk
no lacp suspend-individual
switchport trunk native vlan 10
vpc 20
interface Ethernet1/1
description *PoCh_10->Core-AB*
switchport mode trunk
switchport trunk native vlan 10
channel-group 10 mode active
interface Ethernet1/2
description *PoCh_20->Core-CD*
switchport mode trunk
switchport trunk native vlan 10
channel-group 20 mode active
router ospf 1
router-id 1.1.1.1
default-information originate
area 0.0.0.0 range 10.58.16.0/29
area 0.0.0.0 range 10.58.16.24/29
area 0.0.0.0 range 10.58.16.32/29
02-11-2019 03:19 PM - edited 04-12-2019 07:43 AM
Small step toward , repaired the ospf adjency between the Nexus pair. They see each other (int vlan 2 down..) But the CoreAB OSPF process doesn't see the Nexus switches.
CoreAB
I don't know why inactive area 0 on CoreAB.
02-17-2020 04:13 PM
I solved my problem of course in last year and migration was sucessfully. Here is the final solution, maybe somebody will to find useful.
The OSPF adjency problem reason was that i permit all vlan on the trunk...
Executed topology:
Relevant part of correct config:
Core-AB
vlan 2
name vPC-10
interface Loopback0
ip address 192.168.11.234 255.255.255.255
!
interface Port-channel1
description *Copper_PoCh->Core-CD*
no switchport
ip address 10.58.16.1 255.255.255.248
ip ospf priority 200
ip ospf cost 10
interface Port-channel10
description *N5k-vPC10-L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 2
switchport mode trunk
interface TenGigabitEthernet1/1/4
description *PoCh_10->Nexus_L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 2
switchport mode trunk
channel-group 10 mode active
interface TenGigabitEthernet2/1/4
description *PoCh_10->Nexus_L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 2
switchport mode trunk
channel-group 10 mode active
interface Vlan2
description *vPC10-N5k-primary/secondary*
ip address 10.58.16.25 255.255.255.248
ip ospf priority 100
router ospf 1
nsf cisco
passive-interface Loopback0
network 10.58.16.0 0.0.0.7 area 0
network 10.58.16.16 0.0.0.7 area 0
network 10.58.16.24 0.0.0.7 area 0
Core-CD
vlan 3
name vPC-20
interface Loopback0
description ospf adjency
ip address 192.168.11.233 255.255.255.255
interface Port-channel2
description *Copper_PoCh->Core-AB*
no switchport
ip address 10.58.16.6 255.255.255.248
ip ospf cost 10
interface Port-channel20
description *N5k-vPC20-L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 3
switchport mode trunk
interface TenGigabitEthernet1/1/4
description *PoCh_20->Nexus_L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 3
switchport mode trunk
channel-group 20 mode active
interface TenGigabitEthernet2/1/4
description *PoCh_20->Nexus_L3*
switchport trunk native vlan 10
switchport trunk allowed vlan 3
switchport mode trunk
channel-group 20 mode active
interface Vlan3
description *vPC20-N5k-primary/secondary*
ip address 10.58.16.33 255.255.255.248
ip ospf priority 100
router ospf 1
passive-interface Loopback0
network 10.58.16.0 0.0.0.7 area 0
network 10.58.16.32 0.0.0.7 area 0
N5K-primary
vlan 2
name Nexus->CoreAB_L3
vlan 3
name Nexus->CoreCD_L3
interface Vlan2
description *** OSPF Peering CoreAB ***
no shutdown
no ip redirects
ip address 10.58.16.26/29
ip ospf cost 10
no ip ospf passive-interface
ip router ospf 1 area 0.0.0.0
interface Vlan3
description *** OSPF Peering CoreCD ***
no shutdown
no ip redirects
ip address 10.58.16.34/29
ip ospf cost 10
no ip ospf passive-interface
ip router ospf 1 area 0.0.0.0
interface port-channel10
description ***Core-AB_direction***
switchport mode trunk
no lacp suspend-individual
switchport trunk native vlan 10
vpc 10
interface port-channel20
description ***Core-CD_direction***
switchport mode trunk
no lacp suspend-individual
switchport trunk native vlan 10
vpc 20
interface Ethernet1/1
description *PoCh_10->Core-AB*
switchport mode trunk
switchport trunk native vlan 10
channel-group 10 mode active
interface Ethernet1/2
description *PoCh_20->Core-CD*
switchport mode trunk
switchport trunk native vlan 10
channel-group 20 mode active
Nk5-secondary
vlan 2
name Nexus->CoreAB_L3
vlan 3
name Nexus->CoreCD_L3
interface Vlan2
description *** OSPF Peering CoreAB ***
no shutdown
no ip redirects
ip address 10.58.16.27/29
no ip ospf passive-interface
ip router ospf 1 area 0.0.0.0
interface Vlan3
description *** OSPF Peering CoreCD ***
no shutdown
no ip redirects
ip address 10.58.16.35/29
no ip ospf passive-interface
ip router ospf 1 area 0.0.0.0
interface port-channel10
description ***Core-AB_direction***
switchport mode trunk
no lacp suspend-individual
switchport trunk native vlan 10
vpc 10
interface port-channel20
description ***Core-CD_direction***
switchport mode trunk
no lacp suspend-individual
switchport trunk native vlan 10
vpc 20
interface Ethernet1/1
description *PoCh_10->Core-AB*
switchport mode trunk
switchport trunk native vlan 10
channel-group 10 mode active
interface Ethernet1/2
description *PoCh_20->Core-CD*
switchport mode trunk
switchport trunk native vlan 10
channel-group 20 mode active
router ospf 1
router-id 1.1.1.1
default-information originate
area 0.0.0.0 range 10.58.16.0/29
area 0.0.0.0 range 10.58.16.24/29
area 0.0.0.0 range 10.58.16.32/29
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide