Cisco VPC and L3 Routing

Everybody who has done something with Routing and VPC has come across the site of Brad Hedlund.

Since version Cisco NX-OS Release 7.2(0)D1(1) (only on F2e and F3 modules) you can enable the layer3 peer-router. This should enable you to run routing neighborship over VPC ports.

Per explanation on this link Configuring vPCs it should be possible to connect 2 vpc clusters to each other. I have not yet configured it with this setup, I would like to know if anybody has some experience with this?

Spoke to Cisco and they confirmed that they are now supporting Layer3 peering over VPC, this works only for the VPC peers and only from NX-OS Release 7.2(0)D1(1). At the time of writing, they advised to use 7.2(1)D1(1).

Configuring Layer 3 over vPC for F2E and F3 Modules

Before You BeginEnsure that the peer-gateway in enabled and configured on both the peers and both the peers are running image that supports Layer 3 over vPC feature. If you enter the layer3 peer-router command without enabling the peer-gateway feature, a syslog message is displayed recommending you to enable the peer-gateway feature.

Ensure that the peer link is up.

Procedure

Command or Action Purpose
Step 1 switch# configure terminal Enters global configuration mode.
Step 2 switch(config)# vpc domain domain-id Creates a vPC domain on the device, and enters vpc-domain configuration mode for configuration purposes. There is no default; the range is from 1 to 1000.
Step 3 switch(config-vpc-domain)# layer3 peer-router

Enables the Layer 3 device to form peering adjacency with both peers.

Note    Configure this command in both the peers.
Step 4 switch(config-vpc-domain)# exit Exits vpc-domain configuration mode.
Step 5 switch# show vpc brief (Optional)(Optional) Displays brief information about each vPC domain.
Step 6 switch# copy running-config startup-config (Optional)Copies the running configuration to the startup configuration.

The following example shows how to configure a Layer 3 over vPC for F2, F2E, and F3 modules:

switch# configure terminal
switch(config)# vpc domain 5
switch(config-vpc-domain)# layer3 peer-router
switch(config-vpc-domain)# exit
switch(config)#

This example shows how to verify if the Layer 3 over vPC for F2, F2E, and F3 modules feature is configured:

switch# show vpc brief
vPC domain id : 1
Peer status : peer adjacency formed ok
vPC keep-alive status : peer is alive
Configuration consistency status : success
Per-vlan consistency status : failed
Type-2 consistency status : success
vPC role : secondary
Number of vPCs configured : 2
Peer Gateway : Enabled
Peer gateway excluded VLANs : -
Dual-active excluded VLANs : -
Graceful Consistency Check : Enabled
Auto-recovery status : Enabled (timeout = 240 seconds)
Operational Layer3 Peer : Enabled

As engineer I have one really important tool in my backpack

As engineer I have one really important tool in my backpack

Not everywhere I go, there is an option to remote access equipment. Sometimes I find myself in front of a rack, and could use a second pair of eyes. Other way around, there is not always time to send our best engineer on his/her way to resolve a device that won’t recover from a reboot/power issue/etc. That’s when we use our Airconsole!

What is Airconsole? – The Only Serial Adaptor You’ll Ever Need

Airconsole 2.0 is our popular portable, battery powered, RS232 Serial over WIFI and Bluetooth Adaptor. Designed to be seamlessly used with Mobile Apps on iOS, Android and also on PC, MAC OSX and Linux, Airconsole provides flexible and convenient access to physical Serial and Ethernet ports from devices (such as iPads and iPhones) that have only WIFI or Bluetooth interfaces.

 

The Universal Serial Adaptor:

Airconsole for Personal Use

 

– Instant, all-in-one serial connectivity via Wifi, Wired Ethernet or Bluetooth 4 (Low Energy)

– Works with everything – iPhone, iPad, Android, Mac and PC – use our Apps or bring your own

– Includes Built in Web Terminal client – get on the console with just a browser

– Connects to everything – RS232, DB9, DB25, DEX, Cisco serial console (RJ45 and USB), Serial over USB

– Small – weighs just 2.2oz (63gms) yet runs for hours. Airconsole Mini weighs even less.

– Fast – ready to use in 10 seconds from power on

– Long life Lithium Battery* – 14 days switched off, or operate with external power (cable included)

– Flexible – Operate as a Wireless AP, AP Client or combination of both. Also bridges WIFI to Wired Ethernet to give Wireless only devices a “Wired” Ethernet port.

 

Airconsole gets your modern devices connected to the legacy and USB serial ports on industrial, networking, home automation or other field equipment quickly and easily. No more hunting for the right cable or converter – auto-discovery and setup is built into our Get Console and SerialBot apps, and on PC and Mac our drivers make Airconsole appear as a physically connected serial port.

 

The Portable Terminal Server

Airconsole low cost serial terminal server

 

Why spend hundreds or thousands on a Moxa*, Perle* or Opengear* serial terminal server – the Airconsole is a full featured remote access and out-of-band management device for server and network equipment serial ports – it happens to also be portable and draw very little power. Connect Airconsole’s into your wired or wireless management network and it can auto-tunnel back to the Airconsole Enterprise Server management software (available for customers to host internally or on Amazon EC2). Licenses are included with Airconsole Pro / XL kits.

 

Adding filezilla to Mac OSX el capitan

Today I was trying to add filezilla to my trusted El Capitan.

I downloaded it neatly from FileZilla Project and unzipped (and moved it to the Applications folder). After running, it kept complaining that the download was corrupt and should be moved to trash. My google search let me to the following forum. After reviewing it, I found that it was indeed the trusted setting in security.

Allow apps downloaded from:
o
* Mac App Store and identified developers
o

 

Attachments: 
SecAndPrivacy.png

This can be found in “Allow applications downloaded from” setting on the General tab of the Security & Privacy dialog in your System Preferences.

After setting this to “Anywhere” I could start FileZilla. However, starting an SFTP session, resulted in an error “fzsftp could not be started” and “Could not connect to server”.

The only dirty hack I could find to have SFTP working, was going to the Applications folder. Select FileZilla.app and select “get info” there I changed the security settings for everyone to read and write. I closed FileZilla and restarted the app. After that I could use SFTP without any issue.