08-22-2012 11:23 AM - edited 03-07-2019 08:29 AM
We are thinking of following classic design, would Nexus 5K can have 2 seperate connections to each VDC?
Nexus 7K w/ different VDC (Internal / DMZ )
|
Nexus 5K
|
Servers
Can Nexus 5K have a VPC connection to Nexus 7K to Internal VDC as well as DMZ VDC, and seperate traffic?
08-22-2012 03:41 PM
It would look like your 5500 was connected to two logical 7K.
08-22-2012 07:16 PM
Lealaohoo is correct. With Nexus VDCs, there is no way to make traffic go between two of them across the back plane. Even for your Internal and DMZ VDCs to talk to each other you must connect a physical cable between the same Nexus switch, and configure the port on one end to be in the Internal VDC, and the other end to be in the DMZ. Note a port channel would be recommended for redundancy. Here's a good doc from cisco:
08-22-2012 07:30 PM
You can connect your N5Ks to 2 different VDC (via different physical connections). But you have to be really careful. You need to use non-overlapping VLANs (meaning e.g. VLAN1-500 for internal and VLAN 501-1000 for DMZ) and prune traffic accordingly. You should also consider to use dedicated native VLAN (not VLAN1). You don't want to mix up your STP topology.
HTH,
jerry
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide