background image

 

Design Guide 

 

© 2008 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information. 

Page 21 of 28

RSPAN requires a VLAN to carry the mirrored traffic to the remote destination switch. In the 
recommended topology, the secondary aggregation switch is the RSPAN destination, where an 
analysis device, such as the integrated Cisco Network Analysis Module (NAM), resides. The 
RSPAN VLAN uses the uplink between the blade switch and the secondary aggregation switch. 
This uplink is blocking under normal conditions for regular VLANs. As a result, bandwidth usage is 
a concern only when the uplink is forwarding and sharing the path with production traffic. 

Configuring the Aggregate Switches 

Complete the following steps on the aggregate switches: 

Step 1.   VLAN configuration 

Step 2.   RPVST+ configuration 

Step 3.   Primary and secondary root configuration 

Step 4.   Configuration of port channels between aggregate switches 

Step 5.   Configuration of port channels between aggregate switches and Cisco Catalyst Blade 

Switch 3020s  

Step 6.   Trunking of port channels between aggregate switches 

Step 7.   Configuration of default gateway for each VLAN 

Note:  

 The “Configuration Details” section describes each of these steps.  

Configuring the Cisco Catalyst Blade Switch 3020s  

Complete the following steps on the Cisco Catalyst Blade Switch 3020s: 

Step 1.   VLAN configuration 

Step 2.   RPVST+ configuration 

Step 3.   Configuration of port channels between the Cisco Catalyst Blade Switch 3020 and 

aggregate switches 

Step 4.   Trunking of port channels between the Cisco Catalyst Blade Switch 3020 and aggregate 

switches 

Step 5.   Configuration of server ports on the Cisco Catalyst Blade Switch 3020 

Additional Aggregation-Switch Configuration 

The following recommendations help integrate the Cisco Catalyst Blade Switch 3020s into the data 
center:  

Step 1.   Enable Root Guard on the aggregate-switch links connected to the switches in the blade 

enclosure.  

The spanning-tree topology is calculated, and one of the primary parameters involved in 
this equation is the location of the root switch. Determining the position of the root switch 
in the network allows the network administrator to create an optimized forwarding path for 
traffic. The Root Guard feature is designed to control the location of the root switch. 

The aggregation switches should employ the spanning-tree guard root command on the 
port-channel interfaces connected to the blade switches. 

Summary of Contents for Catalyst Blade 3020

Page 1: ...the Cisco Catalyst Blade Switch 3020 for the HP c Class BladeSystem into the Cisco Data Center Network Architecture Design Guide 2008 Cisco Systems Inc All rights reserved This document is Cisco Public Information ...

Page 2: ... High Availability for the BladeSystem Switching Infrastructure 13 High Availability for the Blade Servers 13 Scalability 14 Physical Port Count 14 Slot Count 15 Management 16 Out of Band Management 16 In Band Management 17 Serial Console Port 17 Management Options 18 HP c Class BladeSystem iLO Connectivity 18 Design and Implementation Details 18 Network Management Recommendations 18 Network Topol...

Page 3: ...vailable for additional Ethernet switches Fibre Channel switches InfiniBand switches or copper or fiber pass through modules Each full height server contains four Gigabit Ethernet interfaces two running each module in module slots 1 and 2 Full height servers also have three mezzanine slots for additional I O connections such as Fibre Channel InfiniBand or even more Ethernet switches Figure 1 Front...

Page 4: ...ure 2 Enclosure Interconnections Using Full Height Servers Figure 3 Enclosure Interconnections Using Half Height Servers 2008 Cisco Systems Inc All rights reserved This document is Cisco Public Information Page 4 of 28 ...

Page 5: ...d management protocols including Cisco Discovery Protocol VLAN Trunking Protocol VTP and Dynamic Trunking Protocol DTP Port Aggregation Protocol PAgP and Link Aggregation Control Protocol LACP for link load balancing and high availability Support for authentication services including RADIUS and TACACS client support Support for protection mechanisms such as limiting the number of MAC addresses all...

Page 6: ...t for allowing rapid Layer 2 convergence after a failure occurs in the primary path The primary benefits of IEEE 802 1w include the following The spanning tree topology converges quickly after a switch or link failure Convergence is accelerated by a handshake known as the proposal agreement mechanism Note The user need not enable PortFast BackboneFast or UplinkFast if running RSTP In terms of conv...

Page 7: ... one spanning tree instance per VLAN and the fast convergence benefits of IEEE 802 1w MST allows the switch to map several VLANs to one spanning tree instance reducing the total number of spanning tree topologies the switch processor must manage A maximum of 16 MST instances is supported In addition MST uses IEEE 802 1w for rapid convergence MST and RPVST create a more predictable and resilient sp...

Page 8: ... cisco com en US solutions ns340 ns517 ns224 ns304 net_design_guidance0900aecd80 0e4d2e pdf Traffic Monitoring The Cisco Catalyst Blade Switch 3020 supports the following traffic monitoring features which are useful for monitoring blade enclosure traffic in data center environments Switched Port Analyzer SPAN Remote SPAN RSPAN SPAN mirrors traffic transmitted or received on source ports or source ...

Page 9: ...orting either PAgP or LACP and identifies the capabilities of each interface The switch dynamically groups similarly configured interfaces into a single logical link called a channel or aggregate port The interface grouping is based on hardware administrative and port parameter attributes For example PAgP groups interface with the same speed duplex mode native VLAN VLAN range trunking status and t...

Page 10: ...nts The terms front end network and back end network define the devices that comprise the infrastructure of the data center and their general role The front end network is the IP routing and switching environment It provides client to server server to server and server to storage network connectivity The back end network supports the storage area network SAN fabric and connectivity between servers...

Page 11: ...gation layer provides a comprehensive set of features for the data center The following devices support these features Multilayer aggregation switches Load balancing devices Firewalls IDSs Content engines Secure Sockets Layer SSL offloaders Network analysis devices Access Layer The primary role of the access layer is to provide the server farms with port density In addition it must be a flexible e...

Page 12: ...cess switches creates a deterministic topology that converges quickly Logical redundancy or fault tolerance may be achieved with Layer 3 technologies such as Hot Standby Router Protocol HSRP or Virtual Router Redundancy Protocol VRRP These protocols allow for virtualization of the gateways for servers or clients across the physical routing devices in the network This virtualization mitigates the e...

Page 13: ... links and a spanning tree It allows for multiple switch or link failures without compromising the availability of the data center applications These channels support the publicly available subnets in the data center and traffic between servers The server to server traffic that uses these uplinks is logically segmented through VLANs and can use network services available in the aggregation layer T...

Page 14: ...t Blade Switch 3020 supports the IEEE 802 3ad standard and Gigabit Ethernet port channels SLB teaming can only be used on full height servers because it requires that both NICS go to the same upstream switch For more information about NIC teaming please visit http h18000 www1 hp com products servers networking whitepapers html Scalability The capability of the data center to adapt to increased dem...

Page 15: ...ayer must be flexible enough to manage the increased demand for ports and slots in this blade server system environment To scale the server farm use an aggregation layer switch that provides an ample number of slots for line cards or service module expansion In addition consider using the following two options which are not mutually exclusive Deploying service switches in the aggregation layer as ...

Page 16: ...3020 is accessible for management and configuration by any of the following traffic paths Out of band OOB management In band management Serial console port These traffic paths provide three different management options for network administration and support different user and application interfaces to the Cisco Catalyst Blade Switch 3020 The remote management of the blade servers within the HP c C...

Page 17: ... the back of the enclosure By default the Cisco Catalyst Blade Switch 3020 provides no routing functions and can have only one default gateway defined Even though the Fa0 interface is called routed it cannot route user traffic Therefore if you enable multiple SVIs or enable the Fast Ethernet port you will not be able to access all these interfaces from other subnets The recent migration 12 2 22 SE...

Page 18: ...w1 hp com products blades components management html HP c Class BladeSystem iLO Connectivity The iLO provides remote management capabilities and is standard with all c Class server blades Remote power console and diagnostics are just a few of the advanced functions iLO provides The HP c Class BladeSystem provides two methods to access this management interface through its Onboard Administrator The...

Page 19: ...r uplink failure scenarios In addition RPVST offers enhanced Layer 2 features for the access layer with integrated capabilities equivalent to PortFast UplinkFast and BackboneFast The connection between the two internal blade switches supports local traffic limited to the HP BladeSystem for example clustering applications or management traffic such as remotely mirrored RSPAN traffic This connection...

Page 20: ...tion between the access layer switches Cisco Catalyst Blade Switch 3020s and the aggregation layer switches so they continue to forward traffic To address this breakdown in network connectivity use one of the following methods Use the NIC teaming features of the ProLiant blade servers Deploy the Layer 2 trunk failover feature in the Cisco Catalyst Blade Switch 3020s In addition the NIC teaming fea...

Page 21: ...ault gateway for each VLAN Note The Configuration Details section describes each of these steps Configuring the Cisco Catalyst Blade Switch 3020s Complete the following steps on the Cisco Catalyst Blade Switch 3020s Step 1 VLAN configuration Step 2 RPVST configuration Step 3 Configuration of port channels between the Cisco Catalyst Blade Switch 3020 and aggregate switches Step 4 Trunking of port c...

Page 22: ...neled and connected to one of the two aggregate switches The internal connections between the two Cisco Catalyst Blade Switch 3020s complete the loop and thus would require Spanning Tree Protocol Alternatively if you enable the internal interconnects you can user Layer 3 interconnects between the aggregation layer switches and still maintain a loop free environment This design uses the links betwe...

Page 23: ...rt channels between aggregate switches Step 5 Configuration of port channels between aggregate switches and Cisco Catalyst Blade Switch 3020s Step 6 Trunking of port channels between aggregate switches Step 7 Configuration of default gateway for each VLAN Configuring the Cisco Catalyst Blade Switch 3020s Complete the following steps on the Cisco Catalyst Blade Switch 3020s Step 1 VLAN configuratio...

Page 24: ...switches The following three types of interswitch connections exist Aggregate 1 to aggregate 2 Aggregate 1 or aggregate 2 to HP c Class BladeSystem switch A or switch B HP BladeSystem switch A to switch B Each of these connections is a Layer 2 Cisco EtherChannel connection consisting of multiple physical interfaces bound together as a channel group or port channel These point to point links betwee...

Page 25: ...witchport trunk allowed vlan VLAN IDs Modify the VLANs allowed on a trunk using one of the following commands config if switchport trunk allowed vlan add VLAN IDs config if switchport trunk allowed vlan remove VLAN IDs Define a port as a trunk port as follows config if switchport mode trunk Note The autonegotiation of a trunk requires that the ports be in the same VTP domain and be able to pass DT...

Page 26: ...er Server slot 16 GigabitEthernet 0 17 Dual media uplink port 1 Dual media uplink port 1 GigabitEthernet 0 18 Dual media uplink port 2 Dual media uplink port 2 GigabitEthernet 0 19 Dual media uplink port 3 Dual media uplink port 3 GigabitEthernet 0 20 Dual media uplink port 4 Dual media uplink port 4 GigabitEthernet 0 21 RJ 45 copper gigabit only uplink port 1 RJ 45 copper gigabit only uplink port...

Page 27: ... two aggregate switches to act as a single virtual router by sharing a common MAC and IP address between them Define a SVI on each aggregate switch and use the HSRP address as the default gateway of the server farm Configure aggregation 1 as the active HSRP router The priority command helps to select this router as the active router because it has a greater value interface Vlan10 description Blade...

Page 28: ...ws config vlan vlanID config vlan name vlan name config vlan remote span Create a source session as follows This interface is the interface or VLAN that contains interesting traffic config monitor session session id source vlan VLAN IDs Configure the RSPAN VLAN as the target for the mirrored traffic as follows config monitor session session ID destination remote vlan remote vlan ID Printed in USA ...

Reviews: