Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
399
Views
0
Helpful
1
Replies

1000v Mgmt Interface

james21970
Level 1
Level 1

‎01-06-2013 08:54 PM - edited ‎03-01-2019 10:48 AM

Hello all,

So I'm looking for some best practices for securing the mgmt 0 interface. The doc's on this leave things a bit open with regard to best practices. Basically what I'm looking for is what not to block so I don't break any important communication between the VEM's and the VSM. Currently we are running in L2 mode, but will soon be migrating to L3.

Any insight would be appreciated.

Thanks.                  

0 Helpful
1 Reply 1

Robert Burns
Cisco Employee
Cisco Employee

‎01-07-2013 07:31 AM

James,

I had a similar post here: https://supportforums.cisco.com/thread/2070391

This details which ports need to be open to allow for the VSM to communicate with vCenter and the other VEM modules.

Abide by this and you can lock down anything else.

You can also apply an ACL to your management interface.  See the security guide for more details on this:

http://www.cisco.com/en/US/docs/switches/datacenter/nexus1000/sw/4_2_1_s_v_2_1_1/security/configuration/guide/b_Cisco_Nexus_1000V_Security_Configuration_Guide_2_1_1_chapter_01001.html#task_C4DA5FF836BC4FF0ABF374984EF092D6

Regards,

Robert

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card