Scribd
Upload
354 views4 pages

CCIE Data Center Cheat Sheet: by Via

This document provides a cheat sheet for CCIE Data Center topics including: - VLAN, FabricPath, HSRP, SVI, VRF, Jumbo Frame, VPC configuration - Protocols like OSPF, EIGRP, PIM, VRRP, HSRP, OTV - Storage concepts such as FCoE, VSANs, and port channels - Networking features including ACLs, NetFlow, NTP, BFD, and MSTP. - Switching configurations for enhanced VPC, fabricpath switching, and FEX. It contains concise code snippets and commands for verifying configurations for the various technologies.

Uploaded by

Napster King
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
354 views4 pages

CCIE Data Center Cheat Sheet: by Via

This document provides a cheat sheet for CCIE Data Center topics including: - VLAN, FabricPath, HSRP, SVI, VRF, Jumbo Frame, VPC configuration - Protocols like OSPF, EIGRP, PIM, VRRP, HSRP, OTV - Storage concepts such as FCoE, VSANs, and port channels - Networking features including ACLs, NetFlow, NTP, BFD, and MSTP. - Switching configurations for enhanced VPC, fabricpath switching, and FEX. It contains concise code snippets and commands for verifying configurations for the various technologies.

Uploaded by

Napster King
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 4

CCIE Data Center Cheat Sheet

by ewibowo via cheatography.com/25163/cs/6495/


VLAN

Fabricpath

HSRP (cont)

HSRP Localisation (cont)

vlan dot1Q tag native

install feature-set fabricpath

ip 10.1.41.254

mac-list

feature-set fabricpath

authentication md5 key-chain

OTV_HSRP_VMAC_deny seq 30

vlan 1

mychain

permit 0000.0000.0000

name VLAN1

fabricpath switch-id 300

timers 1 3

0000.0000.0000

preempt

fabricpath timers linkup-delay

priority 255

20

key chain mychain

fabricpath domain default

key 1

root-priority 255

keystring CCIEDC

SVI (Switch Virtual Interface)


feature interface-vlan
!
interface vlan 41
no shutdown
ip address 10.1.41.252/24

!
interface Vlan888
vrf member vpc-keepalive
ip address 8.8.8.1/30

match mac-list
OTV_HSRP_VMAC_deny
!
otv-isis default
vpn Overlay0

HSRP Localisation

mode fabricpath

vrf context vpc-keepalive

permit 10

maximum-paths 2
vlan 34

VRF

route-map OTV_HSRP_filter

!
interface Ethernet1/1
switchport mode fabricpath
fabricpath isis metric 50

redistribute filter route-map


OTV_HSRP_filter

! VACL Filter:
ip access-list ALL_IPs
10 permit ip any any

Jumbo Frame

N7K:

ip access-list HSRP_IP
10 permit udp any 224.0.0.2/32 eq
1985

VRRP

20 permit udp any 224.0.0.102/32

system jumbomtu 9216


!
int e3/1
mtu 9216

VPC

feature vrrp

eq 1985

vpc domain 100

interface Vlan31

vlan access-map

no shutdown

HSRP_Localization 10

ip address 10.1.31.2

match ip address HSRP_IP

vrrp 1

action drop

priority 254

vlan access-map

class-fcoe

address 10.1.31.1

HSRP_Localization 20

pause no-drop

no shutdown

match ip address ALL_IPs

mtu 2158

action forward

class type network-qos

vlan filter HSRP_Localization

class-default

vlan-list 3001-3002

mtu 9216

role priority 1
system-priority 1
peer-keepalive destination
8.8.8.2 source 8.8.8.1 vrf vpckeepalive
!
interface port-channel100
vpc peer-link

HSRP

Verification:
show vpc consistency-parameters
global

feature hsrp
!
interface Vlan41
no shutdown

VPC+
vpc domain 200
fabricpath switch-id 200
!

ip address 10.1.41.252/24
hsrp version 2
hsrp 1

!
N5K-1:
policy-map type network-qos
jumbo
class type network-qos

! OTV MAC route filter:

system qos

mac-list
OTV_HSRP_VMA
C_deny seq 10
deny 0000.0c07.ac00 ffff.ffff.ff00
mac-list
OTV_HSRP_VMA
C_deny seq 20

interface port-channel100

deny 0000.0c9f.f000 ffff.ffff.f000

switchport mode fabricpath

service-policy type network-qos


jumbo
Netflow
feature netflow
!

vpc peer-link

flow exporter nf_collector


destination 10.1.1.1
By ewibowo

Published 23rd December, 2015.

Sponsored by Readability-Score.com

cheatography.com/ewibowo/

Last updated 17th January, 2016.

Measure your website readability!

Page 1 of 4.

https://readability-score.com

CCIE Data Center Cheat Sheet

by ewibowo via cheatography.com/25163/cs/6495/


Netflow (cont)

EIGRP (cont)

Enhanced VPC (cont)

MST (cont)

source vlan1

ip summary-address eigrp 1

inter eth 1/1-2

name ccie

10.1.40.0/22

channel-group 101

revision 5

no shut

instance 1 vlan 41,42

version 9
!
flow monitor nf_monitor
record netflow-original
exporter NetFlowCollector
!
interface Vlan1
ip flow monitor nf_monitor

PIM

inter po101

feature pim
!
ip pim rp-address 20.0.0.1
!

input

interface Ethernet4/1

Verification:

no shutdown

ip pim sparse-mode

show run netflow


show flow exporter
show flow monitor

Verification:

OSPF

OTV

feature ospf

feature otv

interface Ethernet4/1
ip router ospf 1 area 0

license fcoe module 3


port-channel load-balance srcdst ip-l4port module 3

10 permit ip any 10.1.40.0/24


20 permit tcp any 10.1.41.0/24

40 permit ip any any

otv site-identifier 0x1


interface Overlay1
otv join-interface Ethernet4/1
otv control-group 239.1.1.1

EIGRP

otv extend-vlan 90

feature eigrp

otv data-group 232.1.1.0/24


no shutdown

feature npiv
feature lacp

Default VDC:

feature lldp

clock protocol ntp vdc 3

vsan database

VDC3:

vsan 100

ntp source-interface eth 4/1

no shutdown

Syslog

Verification:

logging server 10.0.0.1

show ip igmp interface brief

logging source-interface lo0

autonomous-system 1
router-id 1.1.1.1
redistribute direct route-map
SVI

show otv vlan


show otv adjacency
show otv route

!
interface Ethernet4/1

feature fex

ip router eigrp 1

no ip redirects

fex 101

vlan 100

Verification:
show vlan fcoe
show policy-map system
show run ipqos

MST
spanning-tree mode mst

vfc

!
Enhanced VPC

!
fcoe vsan 100

show otv

bfd

vdc Storage_VDC id 2 type

feature-set fcoe

NTP

route-map SVI permit 10

router eigrp 1

Storage VDC:

ip igmp version 3

default-nq-7e-policy

ip access-group WAN in

!
match interface vlan 40

service-policy type network-qos

allocate fcoe-vlan-range 100

inter eth 4/1

ntp server 10.0.0.1 prefer

interface Ethernet4/1

system qos

storage

ip ospf network point-to-point

feature bfd

install feature-set fcoe

no shut

30 deny ip any 10.1.41.0/24

otv site-vlan 80

Default VDC:

vpc 101

eq 23

router-id 1.1.1.1

FCoE - Storage VDC

fex associate 101

ip access-list WAN

show run pim


show pim neighbor

router ospf 1

switchport mode fex

ACL

show flow interface

spanning-tree mst 1 root primary

switchport

spanning-tree mst configuration

interface Ethernet 3/1


switcport
switchport mode trunk

diag boot level bypass


!
By ewibowo

Published 23rd December, 2015.

Sponsored by Readability-Score.com

cheatography.com/ewibowo/

Last updated 17th January, 2016.

Measure your website readability!

Page 2 of 4.

https://readability-score.com

CCIE Data Center Cheat Sheet

by ewibowo via cheatography.com/25163/cs/6495/


vfc (cont)

F san-portchannel

E san-portchannel (cont)

FCIP with Firewall

switchport trunk allowed vlan

feature npiv

switchport rate-mode dedicated

MDS-1:

200

feature fport-channel-trunk

spanning-tree port type edge

trunk

interface port-channel 100

channel mode active

interface vfc 4

switchport mode f

bind interface Ethernet 3/1

switchport mode trunk on

switchport mode F

switchport trunk allowed vsan

switchport trunk allowed vsan 2

100

switchport rate-mode shared

vlan 200

fcoe vsan 2

interface fc1/9-12

channel-group 100 force

vsan database

no shutdown

ip addr 10.3.1.1 255.255.255.252


switchport mtu 2300

feature fcip

no shut

feature fcsp

!
fcsp dhchap password CCIEDC
fcsp dhchap devicename
NeighborSwitchWWN password
CCIEDC

E san-portchannel

switchport mode e

switchport mtu 2300

switchport trunk mode on

no shutdown

switchport trunk allowed vsan 1

show int vfc 4 trunk vsan

feature fcoe

fcip profile 1

ip address 10.3.1.1

vsan database

vsan 200

vsan database

vsan 200 loadbalancing src-dst-

vsan 100

id

! SID/DID

interface port-channel 1

port-channel load-balance

channel mode active

ethernet source-dest-ip

fcsp on

switchport mode e

fcdomain domain 0x1 static vsan

switchport trunk allowed vsan

200

add 100

fcdomain restart vsan 200

interface fcip1

interface san-port-channel 22

use-profile 1

channel mode active

peer-info ipaddr 10.3.1.2

switchport mode E

channel-group 1 force

switchport trunk mode on

no shutdown

interface port-channel1
switchport
switchport mode trunk
switchport trunk allowed vlan
100
no shutdown
!
interface Ethernet4/1
channel-group 1 force mode
active
!
interface vfc-po1
switchport mode F
switchport trunk allowed vsan
100

switchport trunk allowed vsan


add 200

passive-mode

port 3005

peer-info ipadd 10.3.1.2

ip address 10.3.1.1

N5K:

feature lacp

ip add 10.3.1.1

use-profile 10

int Gi1/1

show int bri fcoe

vfc-portchannel

fcip profile 10

int fcip 10

255.255.255.252

vsan 2 interface vfc 4


Verification:

int gi1/3
FCIP with FCSP

no shut
!
MDS-2:
int gi1/3
ip add 10.3.1.2 255.255.255.252
switchport mtu 2300
no shut
!
fcip profile 10
ip add 10.3.1.2
!
int fcip 10
use-profile 10
peer-info ipadd 10.3.1.1 port
3005
switchport mode e
switchport trunk mode on
switchport trunk allowed vsan 1
no shut

NeighborSwitchWWN:
show wwn switch

no shutdown
!
vsan database
vsan 100 interface vfc-po 1

By ewibowo

Published 23rd December, 2015.

Sponsored by Readability-Score.com

cheatography.com/ewibowo/

Last updated 17th January, 2016.

Measure your website readability!

Page 3 of 4.

https://readability-score.com

CCIE Data Center Cheat Sheet

by ewibowo via cheatography.com/25163/cs/6495/


NPV

FCoE Host

N1KV - QoS (cont)

feature fcoe

int eth1/20

port-profile type vethernet iscsi

feature npv

switchport

service-policy type qos input

switchport mode trunk

silver

slot 2

switchport trunk allowed vlan

port 1-16 type fc

1,100

system jumbomtu 9000

poweroff module 2

spanning-tree port type edge

no poweroff module 2

trunk

port-profile type ethernet

no shut

system-uplink

npv auto-load-balance

int vfc 20

disruptive

bind interface eth1/20

mtu 9000

switchport mode F
switchport trunk allowed vsan

FC Zone
Creating zone:
zoneset name zs_vsan_100
vsan 100
zone name zone_vsan_100

100

N1KV - Setup
! Maximum number of ports in a
non-uplink port-profile

no shut

port-profile default max-ports 8

N1KV - manual subgroup

member pwwn

port-profile type ethernet system-

20:00:00:25:b5:00:00:01

uplink

! dv Port ID persists for the life of


veth
port-profile default port-binding
static

member pwwn

channel-group auto mode on

50:00:00:00:00:00:00:01

sub-group manual

zoneset activate name

interface e3/1

zs_vsan_100 vsan 100

sub-group-id 0

! No zone (useful for

To find the interface number:

port-profile type ethernet system-

troubleshooting but not for

module vem 3 execute vemcmd

uplink

production):

show port

channel-group auto mode on

! Subgroup ID should start from 0


and increase by 1 for each
additional uplink

mac-pinning relative

zone default-zone permit vsan


100

N1KV - relative subgroup

N1KV - iSCSI Multipath

! Basic mode - manual full zone


database distribution:
zoneset distribute vsan 100
! Enhanced mode - Automatic full
zone database distribution:
zone mode enhanced
!
show zone status vsan 100

port-profile type vethernet iscsi


capability iscsi-multipath
system vlan 30
!
port-profile type ethernet
system-uplink
system vlan 1,30,40*
N1KV - QoS

Shortcuts
sh cli history config-mode
unformatted
cli alias name v2 switchto vdc
N7K-2

policy-map type qos silver


class class-default
set cos 2
!

By ewibowo

Published 23rd December, 2015.

Sponsored by Readability-Score.com

cheatography.com/ewibowo/

Last updated 17th January, 2016.

Measure your website readability!

Page 4 of 4.

https://readability-score.com

You might also like