Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2277
Views
0
Helpful
2
Replies

UCS connection to DMZ switch

MSL
Level 1
Level 1

‎02-20-2019 11:37 PM

Hi

 

As of now UCS 6248 is connected with N9K switches (4 X 10 Gb on vPC). We need to connect atleast 2 UCS blades with DMZ zone, the DMZ switch has 1 Gb ports available. Do we get an advice on connection from UCS to DMZ switch? 

 

Thanks in advance

Labels:
0 Helpful
2 Replies 2

MSL
Level 1
Level 1

‎03-06-2019 12:05 AM

Still we are waiting for someone to response to this Question. We found an article on connecting disjoint networks with Cisco UCS (https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/unified-computing/white_paper_c11-692008.html). We plan to make configuration as mentioned below:-

  1. We will create new global VLANs (for eg:50, 51 & 52) for the DMZ, these VLANs will only be available to DMZ organization.
  2. The above mentioned VLANs will be assigned to uplinks connected to DMZ switch (from each FIs we connected port 1/10 to single DMZ switch)
    1. We configured port channel with upstream single DMZ switch, is this configuration needed or no need for port channel with upstream switch? With UCS vNICs we usually configure fabric level failover, that’s why we confused on Port channel with upstream switch, please clarify.

                 All other existing VLANs will be assigned to existing port channel which is connected to 2 X N9Ks.

     3. We are using both Microsoft HV 2016 & VMWare. We configured vNICs as mentioned below:-

HV 2016 Specific

Comments

VMWare Specific

Comments

*CSV_vNIC_FB

 Using for CSV traffic, Single native VLAN configured    

*LM_vNIC_FA

Using for Live Migration traffic, Single native VLAN configured

#vMotion_vNIC_FA

Using for vMotion traffic, Single native VLAN configured

*Mgmt_vNIC_FA

Using for Management traffic, Single native VLAN configured

#Mgmt_vNIC_FA

Using for Management traffic, Single native VLAN configured

VM1_vNIC_FA

Assigned to Odd slot blades with multiple VLANs, using for VMs

VM1_vNIC_FA

Assigned to Odd slot blades with multiple VLANs, using for VMs

VM2_vNIC_FB

Assigned to Even slot blades with multiple VLANs, using for VMs

VM2_vNIC_FB

Assigned to Even slot blades with multiple VLANs, using for VMs

* The 3 vNICs are assigned to all HV hosts                     # The 2 vNICs are assigned to all ESXi hosts

 

When we assign VLANs to uplinks / port channel receive below alert, hope these won’t affect any of these vNICs and connected VLANs in production

 

Warning.png

 

 

 

 

 

 

 

 

 

 

 

 

 

 

4. With the KB “https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/unified-computing/white_paper_c11-692008.html” it says to remove the default VLAN1 membership from upstream switch, do we need to remove default VLAN1 on all N9K & DMZ switches? (I believe it's not possible)

 

Than You

 

 

0 Helpful

MSL
Level 1
Level 1
In response to MSL

‎03-06-2019 10:07 PM

Any support please

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card