Nexus 1000v ERSPAN. - Original version

Similar documents
Implementing the ERSPAN Analytics Feature on Cisco Nexus 6000 Series and 5600 Platform Switches

Configuring System Port Profiles

Nexus 1000v Port-Channel Best Practices

Configuring Local SPAN and ERSPAN

Configuring NetFlow. Information About NetFlow. What is a Flow. This chapter contains the following sections:

Send document comments to name List name. The range of valid values is 1 to 64.

Configuring Virtual Ethernet Interfaces

Cisco HyperFlex Systems

Chapter 5: Inter-VLAN Routing. Routing & Switching

Configuring an IP ACL

Send document comments to Information About Layer 2 Ethernet Switching

Cisco Virtual Security Gateway Deployment Guide VSG 1.4

Verified Scalability Limits

Security and Virtualization in the Data Center. BRKSEC Cisco Systems, Inc. All rights reserved. Cisco Public

Implementing Inter-VLAN Routing. 2003, Cisco Systems, Inc. All rights reserved. 2-1

Table of Contents HOL-PRT-1305

Verified Scalability Limits

Configure RSPAN with VMware

VSB Backup and Recovery

Implementing Inter-VLAN Routing

Cisco Prime Network Analysis Module (Cisco Prime NAM) for Nexus 1110 Installation and Configuration Guide

Cisco Nexus 1000V System Management Configuration Guide, Release 4.2(1)SV2(2.2)

Configuring Web Cache Services By Using WCCP

This chapter describes how to configure the NetFlow feature on Cisco NX-OS devices.

Troubleshooting Licensing Issues

Configuring Traffic Mirroring

Hypervisors networking: best practices for interconnecting with Cisco switches

Cisco Nexus 1000V Installation and Upgrade Guide, Release 5.2(1)SV3(1.4)

Configuring NetFlow. About NetFlow. This chapter describes how to configure the NetFlow feature on Cisco NX-OS devices.

LAN Switching Configuration Guide

Verified Scalability Limits

Virtual Security Gateway Overview

ANALYSIS OF VIRTUAL NETWORKS IN DATA CENTERS.

Configuring Traffic Mirroring

Configure RSPAN with VMware

Understanding PVLANs in UCS

Configuring Voice VLAN

Migrating Hosts to the Cisco Nexus 1000V Using Cisco Virtual Switch Update Manager, page 3

Verifying the Port Profile Configuration

Configuring VLANs. Understanding VLANs CHAPTER

Configuring SPAN. About SPAN. SPAN Sources

On the Cisco Nexus 5548 Switch, Fibre Channel ports and VSAN ports cannot be configured as ingress source ports in a SPAN session.

UCS C Series Rack Servers VIC Connectivity Options

Configuring Port Channels

Implementing Inter-VLAN Routing

Configuring SPAN. Finding Feature Information. About SPAN. SPAN Sources

Deploy the ExtraHop Discover Appliance with VMware

CCIE Data Center Written Exam ( ) version 1.0

Configuring NetFlow. NetFlow Overview

Configuring SPAN. Configuring SPAN. SPAN Sources. This chapter includes the following sections: Configuring SPAN, page 1

Cisco Nexus 1000V Switch for Microsoft Hyper-V

Configuring SPAN and RSPAN

Installing and Configuring VXLAN Gateway

Cisco Nexus 1000V Software Upgrade Guide, Release 4.0(4)SV1(3d)

Enterprise. Nexus 1000V. L2/L3 Fabric WAN/PE. Customer VRF. MPLS Backbone. Service Provider Data Center-1 Customer VRF WAN/PE OTV OTV.

Cisco Nexus 1000V for VMware vsphere VDP Configuration Guide, Release 5.x

Cisco Nexus 1000V Getting Started Guide, Release 4.2(1) SV1(4a)

Configuring SPAN and RSPAN

Configuring Devices for Flow Collection

Configuring VLANs. Understanding VLANs CHAPTER

The following steps should be used when configuring a VLAN on the EdgeXOS platform:

WCCP Network Integration with Cisco Catalyst 6500: Best Practice Recommendations for Successful Deployments

Cisco Nexus 1000V InterCloud

VLAN Configuration. Understanding VLANs CHAPTER

Troubleshooting Licensing Issues

Virtualized Access Layer. Petr Grygárek

Network Virtualization

Configuring Virtual Service Blades

Configuring Q-in-Q VLAN Tunnels

Cisco Nexus 1000V System Management Configuration Guide, Release 4.2(1)SV1(5.1)

Configuring NetFlow. NetFlow Overview

Configuring VLANs. Understanding VLANs CHAPTER

Configuring VLANs. Understanding VLANs CHAPTER

Configuring Layer 3 Interfaces

Nexus 1000V in Context of SDN. Martin Divis, CSE,

Inside the Nexus 1000V Virtual Switch

Architecting Scalable Clouds using VXLAN and Nexus 1000V

monitor event-trace (EXEC)

Configuring VLANs. Understanding VLANs CHAPTER

Configuring IP Tunnels

Configuring Cache Services Using the Web Cache Communication Protocol

Configuring SPAN. Understanding SPAN CHAPTER. This chapter describes how to configure Switched Port Analyzer (SPAN) and on the Catalyst 2960 switch.

Installing and Configuring Licenses

Configuring the Software Using the GUI

What s New in VMware vsphere 4: Virtual Networking W H I T E P A P E R

Configuring NetFlow. Information About NetFlow. Send document comments to CHAPTER

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

What s New in VMware vsphere 4:

Cisco Introducing Cisco Data Center Networking - DCICN. Download Full version :

Using the REST API Plug-in

Configuring MPLS and EoMPLS

W H I T E P A P E R. What s New in VMware vsphere 4: Virtual Networking

Configuring Virtual Port Channels

This guide presents the instructions and other information concerning the lab activities for this course.

Cisco Nexus 1000V Series Switches

Configuring OpenFlow. Information About OpenFlow. This chapter contains the following sections:

UCS with VMware ESXi End to End Jumbo MTU Configuration Example

Configuring SPAN and RSPAN

Cisco Nexus 1100 Series Virtual Services Appliances

Network Services in Virtualized Data Center

Transcription:

Document Number Based on Template Created By EDCS-XXXXXX EDCS-XXXX Rev X Matthew Wronkowski mwronkow@cisco.com Nexus 1000v ERSPAN This document describes the configuration for ERSPAN sessions created on Nexus 1000v and terminated on N7k or 6500 devices. Please let me know if your topology is not covered by the examples in this document. Modification History Rev. Date Originator Release Comment 1.0 12/6/11 Matthew Wronkowski - Original version Table of Contents Nexus 1000v ERSPAN...1 Limitations...2 Topology...2 Nexus 1000v configuration...2 Nexus 7000 configuration...3 N1k ERSPAN to Catalyst 6500...4 Verification of ERSPAN...4 References:...5

Limitations N7k only supports 1 source IP per ERSPAN-DESTINATION. This means each ESX host needs a separate monitor session. Due to this limitation this is not a scalable solution for ongoing host monitoring. A scalable solution would be NetFlow with NAM. Topology Testing was completed under Nexus 1000v SV1(4a) and Nexus 7000 5.1(4). Nexus 1000v configuration ERSPAN requires a vmkernel interface which is used as the GRE tunnel source. This vmkernel can be the same as the management vmk or it can be a dedicated interface. The port-profile capability l3control command indicates this interface will be used for Layer 3 communication. Create a new vmkernel and port-profile or add the capability command to an existing port-profile. Note this command cannot be removed from the port-profile while it is assigned to vethernet interfaces. Best practice would be to define a port-profile specifically for monitor sessions. The monitor session only requires the source traffic type and a destination IP configured. All other parameters are optional. The source can be an interface, port-channel, or vlan. The destination IP is the address of the target device. For Nexus 7000 or 6500 this is typically an SVI(interface vlan) and not the supervisor management address. Although the IP addresses used in the examples reside in the same subnet, this is not required. If a destination device will be receiving traffic from multiple sources it may be necessary to configure an ERSPAN-ID. This configuration is the same regardless of the ERSPAN destination device. Remember to the monitor session.

# VSM configuration port-profile type vethernet ERSPAN_SC capability l3control vmware port-group switchport mode access switchport access vlan 119 system vlan 119 description ESX vmk state enabled monitor session 2 type erspan-source source vlan 119 rx destination ip 14.17.119.55 <- NAM/N7k/6500 IP ip ttl 64 ip prec 0 ip dscp 0 mtu 1500 header-type 2 Nexus 7000 configuration Begin by defining a target IP for the ERSPAN. This can be any IP address reachable by the ESX vmkernel interface in port-profile ERSPAN_SC. Next create an ERSPAN-DESTINATION monitor session. The source IP will be the vmkernel in the ERSPAN_SC port-profile. One limitation of N7k is only a single source IP per monitor session is allowed. Finally configure the destination of the ERSPAN. In this example we send traffic to a physical interface with a probe attached. interface Vlan119 ip address 14.17.119.55/24 <- Termination of ERSPAN tunnel interface Ethernet2/1 description incoming GRE tunnel switchport switchport mode trunk interface Ethernet2/3 description Monitor - connect to PC switchport switchport monitor spanning-tree port type edge trunk

monitor session 1 type erspan-destination description ERSPAN from N1k-VEM <- Optional SPAN-ID vrf default source ip 14.17.119.60 <- ESX host vmk destination interface Ethernet2/3 N1k ERSPAN to Catalyst 6500 Begin by defining a target IP for the ERSPAN. This can be any IP address reachable by the ESX vmkernel interface in port-profile ERSPAN_SC. Next create an ERSPAN-DESTINATION monitor session. The source IP will be the SVI interface on the 6500. This may not be intuitive that SVI IP is used instead of the ESX vmk. Essentially we are telling the 6500 to listen on the SVI for incoming ERSPAN sessions. interface Vlan119 ip address 14.17.119.55/24 <- Termination of ERSPAN tunnel monitor session 1 type erspan-destination description ERSPAN from N1k-VEM destination interface Gi2/3 source <- Optional SPAN-ID ip address 14.17.119.55 <- 6500 SVI Verification of ERSPAN SV14# show monitor session 2 session 2 --------------- type : erspan-source state : up source intf : rx : source VLANs : rx : 119 source port-profile : rx : filter VLANs : filter not specified destination IP : 14.17.119.55 ERSPAN ID : 111 ERSPAN TTL : 64

ERSPAN IP Prec. : 0 ERSPAN DSCP : 0 ERSPAN MTU : 1500 ERSPAN Header Type: 2 SV14# module vem 5 execute vemcmd show span VEM SOURCE IP: 14.17.119.60 HW SSN ID ERSPAN ID HDR VER DST LTL/IP 2 111 2 14.17.119.55 SV14# show monitor internal info session 2 SV14# show monitor internal event-history session 2 References: Configuring Local SPAN and ERSPAN 6500: Configuring ERSPAN

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback