Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi all, we are facing an issue with TCAM carving using NX OS API. We cannot find an attribute for "hardware access-list tcam region ing-redirect 256". We know all the other attributes listed down below, but "ing-redirect". Can someone help us, please...
Hi all, long story short - this command is not implemented in the API. We had to move all TCAM carving configuration statements to the "bootstrap" configuration (our minimum manual config when the switch is new). Another reason was no option to save ...
Hi Sergiu, I'm glad you're interested. You are right, F&L will probably work, but my concern is VxLAN with port-security anyway. As per documentation:Port security is not supported on switchport interfaces that carry traffic for VXLAN enabled VLANsAn...
Hi Sergiu, I think I owe you the full picture of our problem. We run an Internet Exchange and we were using "feature port-security" for years to secure port from MAC address flood/hijack/spoof. When we bought Nexus 9300 we realized, this feature is n...
It is old but still actual. Thank you for your response. Unfortunately, even with static MAC config, Nexus 9300 will learn MACs in the control plane and it will redistribute all MACs (even unconfigured ones) over EVPN to other switches. Luckily enoug...
Hi Sergiu,for us, this is very useful, because I would like to set MACs manually per port. Recently there is no way how you can "secure" the port in terms of collision/hijacking/flooding MAC addresses in that environment, where you have no control ov...
