The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
This chapter contains the following sections:
Physical NICs are always assigned as trunk ports, which transmit either VLAN tagged or untagged packets. A vswitch can have the following VLAN configurations:
Configuration | Description |
---|---|
External switch tagging (EST) |
Physical NICs are untagged and all VNICs are access ports. EST is enabled by default and is used when the VLAN for the VNIC is set to 0 or left blank. |
Virtual switch tagging (VST) |
All physical NIC ports are tagged and VNICs are access ports. VST is enabled whenever the VNIC’s VLAN is set to any value between 1 and 4094 inclusive. |
Virtual machine guest tagging (VGT) |
All physical NIC ports are tagged. VNICs are trunk ports. To configure VGT, the VLAN is set to 4095 on the VNIC connected to the virtual machine. |
Physical ports are always trunk ports by default. The virtual machine interfaces can be either access ports or trunk ports. If a VEthernet interface is set as a trunk port, the VLAN is 4095.
VEthernet interfaces assigned to specific VLANs are tagged with the VLAN when transmitted. A VEthernet interface that is not assigned to a specific VLAN, or assigned to VLAN 0, are transmitted as untagged on the physical NIC interfaces. On the transmit side, this is equivalent to the native VLAN available in Cisco switches. When the VLAN is not specified, it is assumed to be 0.
The following table summarizes the actions taken on packets received by the virtual ethernet module (VEM) based on VLAN tagging.
Port Type | Packet received | Action |
---|---|---|
Access |
Tagged |
The packet is dropped. |
Access |
Untagged |
VEM adds access VLAN to the packet. |
Trunk |
Tagged |
No action is taken on the packet. |
Trunk |
Untagged |
VEM adds native VLAN tag to packet. |
In accordance with the IEEE 802.1Q standard, up to 4094 VLANs (numbered 1-4094) are supported in Cisco Nexus 1000V, and are organized in the following table:
Note |
For VLAN configuration limits, see Layer 2 Switching Configuration Limits. |
VLANs Numbers | Range | Usage |
---|---|---|
1 |
Normal |
Cisco Nexus 1000V default. You can use this VLAN, but you cannot modify or delete it. |
2–1005 |
Normal |
You can create, use, modify, and delete these VLANs. |
1006-4094 |
Extended |
You can create, name, and use these VLANs. You cannot change the following parameters: The extended system ID is always automatically enabled. |
3968-4047 and 4094 |
Internally allocated |
You cannot use, create, delete, or modify these VLANs. You can display these VLANs. Cisco Nexus 1000V allocates these 80 VLANs, plus VLAN 4094, for features, like diagnostics, that use internal VLANs for their operation. |
Note |
For information about diagnostics, see the document, Cisco Nexus 1000V System Management Configuration Guide. |
Parameters | Default |
---|---|
VLAN assignment for all interfaces and all ports configured as switchports |
VLAN 1 |
VLAN name |
VLANxxxx where xxxx represent four numeric digits (including leading zeroes) equal to the VLAN ID number |
Shut state |
No shutdown |
Operational state |
Active |
External switch tagging (EST) |
Enabled |
Physical ports |
Trunk ports |
IGMP snooping |
Enabled |
Configuring a VLAN
Use this procedure to do one of the following:
Note |
All interfaces and all ports configured as switchports are in VLAN 1 by default. |
Note |
Be aware that the Cisco NX-OS commands may differ from those used in Cisco IOS. |
Command or Action | Purpose | |||
---|---|---|---|---|
Step 1 | switch# configure terminal | Enters global configuration mode. |
||
Step 2 | switch(config)# show vlan | Displays the VLANs that already exist. |
||
Step 3 | switch(config)# { no } vlan { vlan-id | vlan-range } | Creates or deletes, and saves in the running configuration, a VLAN or a range or VLANs. To configure the VLAN, see the procedure, Configuring VLAN Characteristics.
For information about Assigning Layer 2 interfaces to VLANs (access or trunk ports), see theCisco Nexus 1000V Interface Configuration Guide. For information about Configuring ports as VLAN access or trunk ports and assigning ports to VLANs, see the Cisco Nexus 1000V Interface Configuration Guide. |
||
Step 4 | switch(config-vlan)# show vlan id vlan-id | (Optional) Displays the VLAN configuration. |
||
Step 5 | switch(config-vlan)# copy running-config startup-config | (Optional) Saves the running configuration persistently through reboots and restarts by copying it to the startup configuration. |
In the following example VLAN 5 is created and you are automatically placed into the VLAN configuration mode for VLAN 5:
switch# configure terminal switch(config)# vlan 5 switch(config-vlan)#
The following example shows the range, VLAN 15-20, being created. The VLANs in the range are activated, and you are automatically placed into VLAN configuration mode for VLANs 15-20.
Note |
If you create a range of VLANs that includes an unusable VLAN, all VLANs in the range are created except those that are unusable; and Cisco Nexus 1000V returns a message listing the failed VLANs. |
switch# configure terminal switch(config)# vlan 15-20 switch(config-vlan)#
The following example shows VLAN 3967 being deleted, using the no form of the command:
switch# configure terminal switch(config)# no vlan 3967 switch(config)#
The following example displays the VLAN 5 configuration:
switch# configure terminal switch(config)# vlan 5 switch(config-vlan)# show vlan id 5 VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------- 5 VLAN0005 active VLAN Type ---- ----- 5 enet Remote SPAN VLAN ---------------- Disabled Primary Secondary Type Ports ------- --------- --------------- ------------------------------------------- n1000v(config-vlan)# copy run start [########################################] 100% n1000v(config)#
Use this procedure to configure the following for a VLAN that has already been created:
Note |
Commands entered in the VLAN configuration mode are immediately saved to the running configuration. |
Note |
Some characteristics cannot be modified on some VLANs. For more information, see the VLAN numbering described in the Guidelines and Limitationssection. |
n1000v# configure terminal
n1000v(config)# vlan 5
n1000v(config-vlan)# name accounting
n1000v(config-vlan)# state active
n1000v(config-vlan)# no shutdown
n1000v(config-vlan)# show vlan brief
VLAN Name Status Ports
---- -------------------------------- --------- -------------------------------
1 default active Eth2/1, Eth2/2, Eth2/3, Eth2/5
Eth2/7, Eth2/8, Eth2/9, Eth2/10
Eth2/15, Eth2/21, Eth2/22
Eth2/23, Eth2/24, Eth2/25
Eth2/46, Eth2/47, Eth2/48
5 accounting active
6 VLAN0006 active
7 VLAN0007 active
8 test active
9 VLAN0009 active
10 VLAN0010 active
50 VLAN0050 active Eth2/6
100 trunked active
200 VLAN0200 active
201 VLAN0201 active
202 VLAN0202 active
3966 VLAN3966 active
n1000v(config)#
Use one of the following commands to verify the configuration:
Command | Purpose |
---|---|
show running-config vlan vlan-id |
Displays VLAN information in the running configuration. |
show vlan [ all-ports | brief | id vlan-id | name name | dot1q tag native ] |
Displays the specified VLAN information. |
show vlan summary |
Displays a summary of VLAN information. |
switch# show vlan summary Number of existing VLANs : 13 Number of existing user VLANs : 12 Number of existing extended VLANs : 1 switch#
switch# show vlan brief VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------- 1 default active Eth2/1, Eth2/2, Eth2/3, Eth2/5 Eth2/7, Eth2/8, Eth2/9, Eth2/10 Eth2/15, Eth2/21, Eth2/22 Eth2/23, Eth2/24, Eth2/25 Eth2/46, Eth2/47, Eth2/48 5 accounting active 6 VLAN0006 active 7 VLAN0007 active 8 test active 9 VLAN0009 active 10 VLAN0010 active 50 VLAN0050 active Eth2/6 100 trunked active 200 VLAN0200 active 201 VLAN0201 active 202 VLAN0202 active 3966 VLAN3966 active switch#
Feature Name |
Feature Name |
Releases |
---|---|---|
VLANs |
4.0(4)SV1(1) |
This feature was introduced |