Guest

Cisco Nexus 7000 Series Switches

Cisco Nexus 7000 Series NX-OS Verified Scalability Guide

  • Viewing Options

  • PDF (1.3 MB)
  • EPUB (126.4 KB)
  • MOBI (231.8 KB)
  • Feedback
Cisco Nexus 7000 Series NX-OS Verified Scalability Guide

Cisco Nexus 7000 Series NX-OS Verified Scalability Guide

This document describes the Cisco NX-OS configuration limits for the Cisco Nexus 7000 Series switches.

New and Changed Information

The table below summarizes the new and changed features for this document and shows the releases in which each feature is supported. Your software release might not support all the features in this document. For the latest caveats and feature information, see the Bug Search Tool at https:/​/​tools.cisco.com/​bugsearch/​ and the release notes for your software release.



Table 1 New and Changed Verified Scalability Values

Date

Description

Changed in Release

October 17, 2014

Updated the values for ITD services per VDC and virtual IPs per ITD service in the "Configuration Limits for Intelligent Traffic Director" table.

6.2(10)

April 25, 2014

  • Added new section for Remote Integrated Service Engine (RISE) values.

  • Added new section for Intelligent Traffic Director (ITD) values.

  • Updated number of class maps per policy value in "Configuration Limits for QoS."

  • Updated the "Guidelines and Limitations for vPC Configuration Limits" table.

6.2(8)

February 24, 2014

  • Added values for private VLANs to the table in the "Configuration Limits for Layer 2 Switching" section.

  • Added values for the number of secondary IP addresses used for OTV traffic depolarization to the table in the "Configuration Limits for OTV" section.

  • Added values for the number of physical port vPCs on front panel ports used for FCoE to the table in the "Configuration Limits for Interfaces" section.

6.2(6)

January 8, 2014

Added a new parameter to the table in the "Guidelines and Limitations for EIGRP Configuration Limits" section.

6.2

January 7, 2014

Removed the outdated values for "Number of neighbors + passive interfaces + routes" in the "Guidelines and Limitations for EIGRP Configuration Limits" section.

6.2

January 6, 2014

  • Updated the EIGRP verified scalability numbers in Table 14 (Configuration Limits for Unicast Routing) for Cisco NX-OS Release 6.2(6).

  • Updated the configuration limits for Cisco NX-OS Release 6.2(6) in the "Guidelines and Limitations for EIGRP Configuration Limits" section.

6.2(6)

November 2013

  • Added the specified I/O modules to introductory paragraphs for vPC+ and vPC guidelines and limitations in Cisco NX-OS 6.2 releases.

  • Updated and added the information for validated VPC scalability in Cisco NX-OS 6.2 releases.

6.2

August 2013

Updated the verified scalability values.

6.2(2)

October 2012

Updated the verified scalability values.

6.1(2)

August 2012

Updated the verified scalability values.

6.1

November 2011

Initial version of the guide with information for shipping releases.

Introduction

The scalability of Cisco Nexus 7000 Series switches has been verified for the following features:
  • Cisco Nexus 2000 Series Fabric Extender connectivity to Cisco Nexus 7000 Series switches

  • FabricPath

  • Fibre Channel over Ethernet (FCoE)

  • Interfaces

  • Layer 2 switching

  • Locator/ID Separation Protocol (LISP)

  • Multiprotocol Label Switching (MPLS)

  • Multicast routing

  • Overlay Transport Virtualization (OTV)

  • QoS

  • Security

  • System management

  • Unicast routing

  • Virtual device context (VDC)

  • RISE

  • ITD

To make the best use of this document, please take note of the following:

  • All numbers are per system unless noted otherwise. For example, a listed number of FCoE fabric logins can be in a single VDC or be a sum of fabric logins across all VDCs in the system. Any changes in the number of supported VDCs do not automatically imply changes in the supported scale for other features.

  • If the latest release has an updated value for a parameter but the previous release does not, specific information for the previous release is not available.

  • The values provided in this guide are uni-dimensional. They focus on the scalability of one particular feature at a time. Results might differ from the values listed here when trying to achieve maximum scalability with multiple features enabled.

  • The values provided in this guide should not be interpreted as theoretical system limits for Cisco Nexus 7000 Series and Cisco Nexus 7700 Series hardware or Cisco NX-OS software. These limits refer to values that have been validated by Cisco. They can increase over time as more testing and validation is done.

  • Cisco NX-OS Release 6.1 introduced support for Cisco Nexus 7000 Supervisor 2 and Supervisor 2e. Supervisor 2e is designed to provide the highest software scalability. If a higher scale is verified on Supervisor 2e, the scale values for each supervisor will be listed using the following notation: Supervisor 1 value / Supervisor 2 value / Supervisor 2e value. If Supervisor 2e is not verified to provide a higher scale for a particular feature parameter, a single scalability value will be listed for all supervisors.

  • Cisco NX-OS Release 6.2 introduced support for Cisco Nexus 7700 switches. Supervisor 2e running on Cisco Nexus 7700 switches provides the same software scalability as Supervisor 2e running on Cisco Nexus 7000 switches.

Configuration Limits for Connecting Cisco Nexus 2000 Series Fabric Extenders to Cisco Nexus 7000 Series Switches

Table 2 Configuration Limits for Connecting Cisco Nexus 2000 Series Fabric Extenders to Cisco Nexus 7000 Series Switches
Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
Number of Fabric Extenders with total number of Fabric Extender server interfaces on Supervisor 1 or 2 32 with 1536 32 with 1536 32 32
Number of Fabric Extenders with total number of Fabric Extender server interfaces on Supervisor 2e 64 with 3072 48 with 2048 N/A N/A
Number of VLANs per Fabric Extender 2000 2000 2000 2000
Number of VLANs per Fabric Extender server interface 75 50 50 50
Number of subinterfaces per Fabric Extender server interface 63 63 63 63

Note


To achieve the highest VLAN per Fabric Extender (FEX) port scale, Cisco recommends connecting FEX uplinks to one switch on chip (SoC) on F2 or F2e Series modules instead of spreading them across different SoCs.


Configuration Limits for FabricPath

Table 3 Configuration Limits for FabricPath
Feature Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
Number of VLANs per switch 4000 2000 (Cisco NX-OS 6.1.1)

4000 (Cisco NX-OS 6.1.2)

2000 2000
Number of core ports per switch 256 / 256 / 768 256 256 256
Number of edge ports per switch 384 256 256 256
Number of topologies 8 1 1 1
Number of trees per topology 2 2 2 2
Number of multicast groups per switch 10,000 10,000 10,000 10,000
Number of FabricPath IS-IS adjacencies 256 / 256 / 768 256 256 256
Number of switch IDs 256 / 256 / 768 128 (Cisco NX-OS 6.1.1)

256 (Cisco NX-OS 6.1.2)

128 64

Note


To achieve the maximum number of topologies, Cisco recommends enabling the no port-channel limit command. Enabling this command will cause a brief disruption to traffic.


Configuration Limits for FCoE

Table 4 Configuration Limits for FCoE
Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
Number of fabric logins per switch 2500 Not tested Not tested Not tested
Number of fabric logins per line card 500 Not tested Not tested Not tested
Number of fabric logins per port 256 Not tested Not tested Not tested
Number of FCoE hops 7 Not tested Not tested Not tested
Number of vFC interfaces 396 Not tested Not tested Not tested
Number of vFC port channels 128 Not tested Not tested Not tested
Number of zone members per fabric 16,000 Not tested Not tested Not tested
Number of zones per fabric 8000 Not tested Not tested Not tested
Number of zone sets per switch 500 Not tested Not tested Not tested
Number of VSANs per fabric 80 Not tested Not tested Not tested

Note


The numbers above are verified and supported on Cisco Nexus 7000 and Cisco Nexus 7700 switches with Supervisor 2e only.


Configuration Limits for Interfaces

Table 5 Configuration Limits for Interfaces
Feature Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)

Port channels

Number of port channels per system

744

528

528

528

Virtual port channels (vPCs)

Number of vPCs (total) per system

744

528

528

528

Number of vPCs (FEX) per system

744

528

528

528

Number of vPC+s (total) per system

3841

244

244

244

Number of physical port vPCs on front panel ports used for FCoE

30 from Cisco NX-OS Release 6.2(6)

N/A

N/A

N/A

BFD Minimum interval x multiplier (peers over Layer 3 link or Layer 3 port channel with per-link mode) 50 msec x 3 50 msec x 3 50 msec x 3 50 msec x 3
Minimum interval x multiplier (peers over Layer 2 port channel and Layer 3 port channel without per-link mode) 250 msec x 3 250 msec x 3 250 msec x 3 250 msec x 3
Number of sessions per I/O module with subinterface optimize 1000 N/A N/A N/A
Number of sessions per I/O module with 300 msec x 3 interval 500 Not tested Not tested Not tested
Number of sessions per I/O module with 50 msec x 3 interval 250 200 200 200
Number of sessions per system 2000 1000 1000 1000
Generic routing encapsulation (GRE) Number of GRE tunnels 1500 1500 1500 1500
1 To achieve more than 244 VPC+s, you must enable the no port-channel limit command. Enabling this command will cause a brief disruption to traffic.

Guidelines and Limitations for vPC Configuration Limits

The vPC configuration limits such as the number of vPC+ and VLANs in a vPC+ domain depend on many different parameters. The following templates are validated in the Cisco NX-OS 6.2 release with different I/O modules where applicable and should be used as a guide in planning your deployment.

Feature Profile A1 Profile A2 Profile B Profile C Profile D
vPC 75 75 35 400 744
VDC 1 4 1 1 1
VLANs per system 500 500 4000 4000 4000
VLAN trunked per vPC 30 30 4000 300 200
SVI per system 500 300 4000 4000 744
RPVST+ logical ports 6,500 16,000 N/A -- MST used N/A -- MST used N/A -- MST used
STP virtual ports 90,000 150,000 150,000 150,000 150,000
HSRP groups 500 300 4000 4000 744
Supervisor 1 2e 2e 2e 2e
Modules M2/F2e/F3 M2/F2e/F3 M2 F2e F2e/F3

Note


For the highest vPC scalability, Cisco recommends deploying MST and Supervisor 2e. For scenarios with 4000 VLANs and SVIs and HSRP, Cisco recommends using the M2 Series modules.


Guidelines and Limitations for vPC+ Configuration Limits

The vPC+ configuration limits such as the number of vPC+ and VLANs in a vPC+ domain depend on many different parameters. The following templates are validated in the Cisco NX-OS 6.2 release with F2e I/O modules and should be used as a guide in planning your deployment.

Feature Profile A Profile B
vPC+ 384 35
VDC 2 1
VLANs per VDC 2000 4000
VLAN / vPC 75 4000
HSRP groups 384 4000
Supervisor 2e 2e

Guidelines and Limitations for BFD Configuration Limits

  • Beginning with Cisco NX-OS Release 6.2, the number of sessions can be all IPv4, all IPv6, or a mix of both.

  • For the highest per-line card scale, Cisco recommends using the M2, F2, F2e, or F3 Series modules.

  • For the highest per-system scale, Cisco recommends using Supervisor 2e.

Configuration Limits for Layer 2 Switching

Table 6 Configuration Limits for Layer 2 Switching
Feature Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
Layer 2 infrastructure Number of Layer 2 table entries on M Series I/O modules 128,000 128,000 128,000 128,000
Number of Layer 2 table entries on F1 Series I/O modules 16,000 to 256,000 16,000 to 256,000 16,000 to 256,000 16,000 to 256,000
Number of Layer 2 table entries on F2 or F2e Series I/O modules 16,000 to 192,000 16,000 to 192,000 16,000 to 192,000 N/A
Spanning Tree Protocol Number of Multiple Spanning Tree (MST) instances per VDC 64 64 64 64
Number of MST virtual ports 90,000 / 90,000 / 150,000 90,000 90,000 90,000
Number of Rapid per-VLAN Spanning Tree+ (RPVST+) logical ports per switch 16,000 16,000 16,000 16,000
Private VLAN Number of private VLAN mappings per promiscuous trunk 16 16 16 16

Note


The F2 and F2e modules synchronize the MAC address tables for a VLAN across all Switch on Chips (SoCs) present in a virtual device context (VDC) when a switch virtual interface (SVI) for the VLAN is configured. Synchronizing the MAC address tables can reduce the number of MAC addresses supported in a VDC to 16,000.

Configuration Limits for LISP

Table 7 Configuration Limits for Map Server and Ingress Tunnel Routers (ITRs) and Egress Tunnel Routers (ETRs)
Feature Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
Map server Number of mapping entries registered on a map server 10,000 10,000 10,000 1000
Number of RLOCs per EID mapping entry 8 8 8 8
ITR/ETR Number of dynamic EID mapping entries registered to a map server 250 250 250 250
Number of EIDs with static mapping entries registered to a map server (per address family and per VRF) 4 4 4 4
Number of VRFs 300 300 300 300
Multi-Tenancy Number of instances on a map server 256 N/A N/A N/A
Number of instances on xTR and PxTR 256 N/A N/A N/A
PxTR Number of EID prefixes on PxTR map cache 1000 Not tested Not tested Not tested
xTR Number of EID prefixes on xTR map cache 10,000 Not tested Not tested Not tested

Configuration Limits for MPLS

Table 8 Configuration Limits for MPLS
Feature Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
LDP and infrastructure Maximum label depth for forwarding 4 4 4 4
Number of LDP sessions 200 200 200 200
Traffic engineering Number of MPLS TE head-end tunnels 5000 4000 4000 4000
Number of MPLS TE mid-point LSPs (transit) 12,000 12,000 12,000 12,000
Layer 2 VPN (L2VPN) Number of pseudo-wires for VPLS 2000 N/A N/A N/A
Number of pseudo-wires for EoMPLS 4000 N/A N/A N/A
Number of VPLS virtual forwarding instances (VFIs) 1000 N/A N/A N/A
Number of VPLS bridge domains 1000 N/A N/A N/A
Number of VPLS sites 16 single-homed

8 dual-homed

N/A N/A N/A
Number of MAC addresses in VPLS across all VLANs 40,000 N/A N/A N/A
Layer 3 VPN (L3VPN) Number of VPNs per system 1000 / 1000 / 4000 1000 1000 1000
Number of VPNv4 routes with per-prefix label allocation mode 300,000 / 300,000 / 500,000 300,000 300,000 300,000
Number of VPN labels with per-prefix label allocation mode 300,000 / 300,000 / 500,000 300,000 300,000 300,000
Number of VPNv4 routes with per-VRF label allocation mode 500,000 / 500,000 / 700,000 500,000 500,000 500,000
Number of VPN labels with per-VRF label allocation mode 1000 / 1000 / 4000 1000 1000 1000
Number of VPNv6 (6VPE) routes with per-VRF label allocation mode 250,000 / 250,000 / 350,000 250,000 250,000 250,000
Number of route targets imported in one VRF 1000 Not tested Not tested Not tested
MVPN Number of multicast VRFs per system 200 200 200 200
Number of multicast VRF routes 50,000 50,000 50,000 50,000
Number of MDT groups per system 1000 1000 1000 1000
Number of MDT groups per VRF 1000 256 256 256

Guidelines and Limitations for MPLS L2VPN Configuration Limits

  • Each MPLS L2VPN scale value might vary when combined with other parameters.

  • For VPLS, the more sites that are used, the fewer VFIs and bridge domains that can be supported due to the increased number of pseudo-wires to connect sites in a full mesh.

Guidelines and Limitations for MPLS L3VPN Configuration Limits

  • Each MPLS L3VPN scale value might vary when combined with other parameters. See examples of scenarios tested with Supervisor 2e running Cisco NX-OS Release 6.2 for better guidance.

  • The following scenarios were tested in a single VDC as well as in VRFs broken up across four VDCs. 85% of the routes were local, and 15% were remote.

    Parameter Verified Limit (Cisco NX-OS 6.2)
    Number of L3VPNs with PE-CE (2000 static routes + 2000 BGP sessions) 4000
    Number of L3VPNs without PE-CE (direct routes) 4000
    Number of L3VPNs in InterAS OptB lite 4000

Configuration Limits for Multicast Routing

Table 9 Configuration Limits for Multicast Routing
Feature Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
Multicast routing and forwarding Number of IPv4 multicast routes with PIM sparse mode 32,000 32,000 32,000 32,000
Number of IPv4 multicast routes with PIM bidirectional 32,000 Not tested Not tested Not tested
Number of IPv4 multicast routes using generic routing encapsulation reverse path forwarding (GRE RPF) interfaces or outgoing interfaces (OIFs) / number of GRE OIFs per route 16,000 / 8 16,000 / 8 16,000 / 8 16,000 / 8
Number of IPv4 multicast routes in a vPC environment 25,000 15,000 15,000 15,000
Number of IPv6 multicast routes 2000 2000 2000 2000
Internet Group Management Protocol (IGMP) and Multicast Listener Discovery (MLD) Number of IGMP groups 32,0002 32,000 32,000 32,000
Number of MLD groups 2000 2000 2000 2000
Multicast Source Discovery Protocol (MSDP) Number of MSDP source-active (SA) cache entries 12,000 12,000 12,000 12,000
Number of MSDP peers 6 6 6 6
PIM Number of PIM IPv4 neighbors 1000 1000 1000 1000
Number of PIM IPv4 neighbors with aggressive hello/hold timers (1 second / 3 seconds) 50 Not tested Not tested Not tested
Number of PIM IPv6 neighbors 200 Not tested Not tested Not tested
2 4000 mroutes were (*,G), and the rest were (S,G).

Note


Cisco recommends M2 Series modules to achieve the highest multicast scale.



Note


High availability (stateful switchover and ISSU) is not supported with aggressive PIM hello timers. Cisco recommends using default PIM hello timers combined with BFD for PIM.


Configuration Limits for OTV

Table 10 Configuration Limits for OTV
Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)

Number of extended VLANs per system across all configured overlays

1500

256

256

256

Number of total MAC addresses across all sites

32,000

16,000

16,000

16,000

Number of local MAC addresses per site

12,000

8,000

8,000

8,000

Number of edge devices per site

2

2

2

2

Number of OTV-connected sites

8

6

6

6

Number of OTV overlays (simultaneous)

10

10

10

10

Number of instances (instance-id)

1

1

1

1

Number of local multicast routes

4000

2000

2000

2000

Number of multicast data groups

256

256

256

256

Number of secondary IP addresses used for OTV traffic depolarization

3 from Cisco NX-OS Release 6.2(6)

N/A

N/A

N/A


Note


To achieve maximum VLAN and MAC address scale, Cisco recommends using one overlay.


Configuration Limits for QoS

Table 11 Configuration Limits for QoS
Parameter Verified Limit (Cisco NX-OS Release 6.2) Verified Limit (Cisco NX-OS Release 6.1) Verified Limit (Cisco NX-OS Release 6.0) Verified Limit (Cisco NX-OS Release 5.2)

Number of class maps per policy

128

4096 in 6.2(8) and later releases

128

128

128

Number of class-maps per system across all policies

128

6,000 / 6,000 / 8,000 from 6.2(8) onwards

128

128

128

Number of matches in a class map

1024

1024

1024

1024

Number of policers on M1 I/O module

12288

12288

12288

12288

Number of policers on M2 I/O module

12288

12288

12288

12288

Number of policers on F1 I/O module

0

0

0

0

Number of policers for F2/F2E I/O module

12288*

12288

12288

N/A

Number of policers for F3 - N7K 40G I/O module

6144*

N/A

N/A

N/A

Number of policers for F3 - N77 10G I/O module

6144*

N/A

N/A

N/A

Number of policers for F3 - N77 40G I/O module

12288*

N/A

N/A

N/A

Number of policers for F3 - N77 100G I/O module

12288*

N/A

N/A

N/A

* 1,000 policers per SOC

Configuration Limits for Security

Table 12 Configuration Limits for Security
Feature Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
ACLs Maximum number of ACEs for application ACLs (used by NTP, SNMP, and VTY) 1000 1000 1000 1000
ACL capture Number of sessions per system 1 1 1 1
Cisco TrustSec Number of IP-SGT mappings for M1/M2 I/O module 50,000 Not tested Not tested Not tested
Number of IP-SGT mappings for F2/F2e I/O module 32,000 Not tested Not tested Not tested
Number of IP-SGT mappings for F3 I/O module 64,000 Not tested Not tested Not tested
Number of SXP connections 980 Not tested Not tested Not tested
Number of IP-SGT mappings learned using SXP 50,000 Not tested Not tested Not tested
Number of SGT Groups 3,000 SGT/DGT Not tested Not tested Not tested
DHCP Number of total bindings for DHCPv4 snooping 50,000 4000 Not tested Not tested
Number of VLANs for DHCP snooping 4000 1000 Not tested Not tested
Number of total clients for DHCPv4 relay 50,000 4000 Not tested Not tested
Number of total clients for DHCPv6 relay 10,000 N/A N/A N/A
Number of DHCP relay agents 3960 1000 Not tested Not tested
Number of DHCP helper addresses for SVI 16 16 Not tested Not tested

Each DHCP scale value might vary when combined with other parameters. See this example of a scenario tested for Cisco NX-OS Release 6.2 for better guidance.

Parameter Verified Limit (Cisco NX-OS 6.2)
Number of SVIs with IPv4 and IPv6 DHCP relay configured together 3960

Guidelines and Limitations for DHCP Configuration Limits

For Cisco NX-OS Release 6.2 and later releases, you must enable the insertion of Option 82 information for DHCP packets to support the highest DHCP snooping scale.

Configuration Limits for System Management

Table 13 Configuration Limits for System Management
Feature Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
IP SLA Maximum number of probes configured 500 / 500 / 10003 500 N/A N/A
SPAN and ERSPAN Number of active SPAN or ERSPAN source sessions per system 14 (Nexus 7000); 16 (Nexus 7700) 2 2 2
Number of configured (not active) SPAN sessions per VDC 48 48 48 48
Number of active ERSPAN destination sessions per system 23 (Nexus 7000); 16 (Nexus 7700) 23 23 23
Number of source interfaces per SPAN or ERSPAN session 128 128 128 128
Number of destination interfaces per SPAN or ERSPAN session 32 32 32 32
Number of source VLANs per SPAN or ERSPAN session 32 32 32 32
PTP/IEEE 1588 Number of clients behind a port 100 / 100 / 512 100 / 100 / 512 Not tested Not tested
3 The highest scale was verified with UDP jitter and ICMP probes.

Guidelines and Limitations for IP SLA Configuration Limits

  • To achieve the highest IP SLA probe scale, you might need to add a specific CoPP configuration to allow the IP SLA generated packets to pass through. Otherwise, probes might experience timeouts. See the Cisco Nexus 7000 Series NX-OS IP SLAs Configuration Guide for more details.

  • Even if CoPP is not dropping any IP SLA traffic, round-trip times (RTTs) might vary, so it is important to test locally and set the proper timeout value for IP SLA probes. Generally, Cisco does not recommend setting the IP SLA probe timeout below 1 second.

  • Cisco recommends using Supervisor 2e to achieve the highest scale and the lowest RTT for IP SLA probes.

Guidelines and Limitations for SPAN Configuration Limits

The number of SPAN sessions refers to unidirectional sessions. On the Cisco Nexus 7000 Series switch, two SPAN extended sessions can be combined to create a bidirectional session, and a SPAN standard session can behave either as unidirectional or bidirectional. The Cisco Nexus 7700 switch does not have standard and extended sessions. All SPAN sessions are unidirectional, and any two can be combined to create a bidirectional session. See the Cisco Nexus 7000 Series NX-OS System Management Configuration Guide for more information.

Configuration Limits for Unicast Routing

Table 14 Configuration Limits for Unicast Routing
Feature Parameter Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
ARP/ND Number of entries in ARP table 128,000 128,000 128,000 128,000
Number of ARP packets per second 1500 / 1500 / 5000 1500 Not tested Not tested
Number of ARP glean packets for second 1500 / 1500 / 5000 1500 Not tested Not tested
Number of IPv6 ND packets per second 1500 / 1500 / 2000 1500 Not tested Not tested
Number of IPv6 glean packets per second 1500 / 1500 / 6000 1500 Not tested Not tested
OSPFv2 Number of neighbors / total LSAs4 1000 / 100,000 300 / 15,000 300 / 15,000 300 / 15,000
Number of neighbors / total LSAs with aggressive timers (1s/4s)5 250 / 50,000 16 / 6000 16 / 6000 16 / 6000
Number of passive interfaces 3780 500 500 500
Number of process instances per VDC 16 16 4 4
Number of process instances per system 16 16 16 16
Number of equal cost paths 32 16 16 16
OSPFv3 Number of neighbors / total LSAs6 300 / 50,000 300 / 15,000 300 / 15,000 300 / 15,000
Number of passive interfaces 1280 300 300 300
Number of process instances per VDC 16 16 4 4
Number of process instances per system 16 16 16 16
Number of equal cost paths 32 16 16 16
IS-IS Number of neighbors 300 300 300 300
Number of neighbors with aggressive timers (1s/3s) 250 Not tested Not tested Not tested
Number of passive interfaces 600 Not tested Not tested Not tested
Number of routes 30,000 Not tested Not tested Not tested
Number of process instances per VDC 16 4 4 4
Number of process instances per system 16 16 16 16
Number of equal cost paths 32 16 16 16
EIGRP Number of neighbors 500

2000 in 6.2(6) and later releases

300 50 50
Number of neighbors with aggressive timers (1s/3s) 250 Not tested Not tested Not tested
Number of passive interfaces 3960 Not tested Not tested Not tested
Number of routes 50,000

100,000 in 6.2(6) and later releases

15,000 15,000 15,000
Number of process instances per VDC 16 4 4 4
Number of process instances per system 16 16 16 16
Number of equal cost paths 32 16 16 16
Static routing Number of static routes 4000 1000 1000 1000
BGP Number of peers 2000 1000 1000 1000
Number of AS-path entries 512 512 512 512
Number of prefix-list entries in a single prefix list 20,000 20,000 20,000 20,000
Number of prefixes per peer (one peer, eBGP or iBGP, IPv4) 900,000 900,000 900,000 900,000
Number of routes in BGP RIB 5.2 million 3 million 3 million 3 million
Number of unique attributes stored in BGP database 920,000 512,000 512,000 512,000
Number of equal cost paths 32 16 16 16
Number of paths advertised with BGP addpath7 32 32 N/A N/A
HSRP Number of groups per interface or I/O module No limit 500 500 500
Number of groups with default timers (3s/10s) and multiple group optimization 2000 / 2000 / 4000 (with maximum 2000 master groups) N/A N/A N/A
Number of groups with default timers (3s/10s) 2000 2000 2000 2000
Number of groups with aggressive timers (1s/3s) and extended hold timer features (in-service software upgrade [ISSU] / stateful switchover [SSO] support) 1000 1000 1000 1000
Anycast HSRP Number of routers in Anycast HSRP group 4 N/A N/A N/A
Number of Anycast HSRP bundles 64 (Nexus 7000)

128 (Nexus 7700)

N/A N/A N/A
Number of groups per bundle 200 N/A N/A N/A
Number of groups across all Anycast HSRP bundles 2000 N/A N/A N/A
VRRPv2 Number of groups per interface or I/O module 100 100 100 100
Number of groups with default timers (1s/3s) 255 255 255 255
VRRPv3 Number of groups with relaxed timers (3s/10s) and pathways 255 / 255 / 4000 (with maximum 2000 leader groups) N/A N/A N/A
Number of groups with relaxed timers (3s/10s) 255 / 255 / 2000 N/A N/A N/A
Number of groups with default timers (1s/3s) 255 / 255 / 1000 N/A N/A N/A
GLBP Number of groups per interface or I/O module 200 200 200 200
Number of groups with default timers (3s/10s) 1000 1000 1000 1000
Number of groups with aggressive timers (1s/3s) 500 500 500 500
Number of groups with aggressive timers (1s/3s) and extended hold timer feature (ISSU/SSO support) 500 500 500 500
PBR Number of configured sequences per policy 23 23 (starting with Cisco NX-OS 6.1.3) Not tested Not tested
Object tracking Number of objects tracked 500 Not tested Not tested Not tested
VRFs Number of VRFs per system8, 9 4000 1000 1000 1000
4 The number of LSAs equals the number of routes.
5 The number of LSAs equals the number of routes.
6 The number of LSAs equals the number of routes.
7 Only 16 paths are active and programmed to the hardware in Cisco NX-OS Release 6.1. Beginning with Cisco NX-OS Release 6.2 with F2 or F2e Series modules, 32 paths can be active and programmed to the hardware.
8 With each new VDC configured, the number of configurable VRFs per system is reduced by two as each VDC has a default VRF and management VRFs that are not removable. For example, with 4 configured VDCs on Cisco NX-OS Release 6.2, you can configure up to 992 additional VRFs per system (either all in one VDC or across VDCs).
9 Not all dynamic routing protocols can support having peers in all of the supported VRFs. Refer to the individual protocol scale for more information.

Guidelines and Limitations for All Unicast Routing Configuration Limits

  • 32-way ECMP is supported only with F2 and F2e Series modules and Cisco NX-OS Release 6.2.

  • High availability (graceful restart, stateful switchover, and ISSU) is not supported when protocol aggressive timers are configured at any scale.

Guidelines and Limitations for OSPF Configuration Limits

  • Cisco recommends using Supervisor 2e for the highest scale and fastest convergence.

  • To achieve the highest scale, Cisco recommends using a single OSPF instance instead of multiple instances.

  • Each OSPFv2 and OSPFv3 scale value might vary when combined with other parameters. See examples of scenarios tested for Cisco NX-OS Release 6.2 for better guidance. All scenarios were tested with a single OSPF instance.

  • The graceful restart timeout value might need to be increased in multi-dimensional scenarios.

  • The passive interface default was used.

Feature Parameter Verified Limit (Cisco NX-OS 6.2)
OSPFv2 Number of maximum neighbors + passive interfaces + total LSAs + VRFs 1000 + 2899 + 100,000 + 300
OSPFv2 Number of maximum neighbors + passive interfaces + total LSAs 1003 + 2899 + 100,000
OSPFv2 Number of maximum passive interfaces + neighbors + total LSAs 3780 + 22 + 100,000
OSPFv2 Number of neighbors + passive interfaces + total LSAs + VRFs with aggressive timers (1s/4s) 250 + 750 + 50,000 + 250
OSPFv3 Number of maximum neighbors + passive interfaces + total LSAs + VRFs 300 + 1000 + 50,000 + 300
OSPFv3 Number of maximum passive interfaces + neighbors + total LSAs 1280 + 20 + 50,000
OSPFv3 Number of neighbors + passive interfaces + total LSAs + VRFs with aggressive timers (1s/4s) 100 + 300 + 25,000 + 100

Guidelines and Limitations for IS-IS Configuration Limits

  • Cisco recommends using Supervisor 2e for the highest scale and fastest convergence.

  • Each IS-IS scale value might vary when combined with other parameters. See these examples of scenarios tested for Cisco NX-OS Release 6.2 for better guidance. All scenarios were tested with a single IS-IS instance with IPv4 and IPv6 address families enabled on all peers and the total number of routes being a mix of IPv4 and IPv6 routes.

Parameter Verified Limit (Cisco NX-OS 6.2)
Number of maximum neighbors + passive interfaces + total routes 300 + 600 + 30,000
Number of maximum passive interfaces + neighbors + total routes 300 + 600 + 30,000
Number of neighbors + passive interfaces + total routes with aggressive timers (1s/3s) 250 + 600 + 30,000

Guidelines and Limitations for EIGRP Configuration Limits

  • The passive interface default was used.

  • To achieve the highest scale with high availability, you must increase the graceful restart signal timer to 60 seconds.

  • Each EIGRP scale value might vary when combined with other parameters. See these examples of scenarios tested for Cisco NX-OS Release 6.2 for better guidance. All scenarios were tested with a single EIGRP instance.

Parameter Verified Limit (Cisco NX-OS 6.2)

Number of neighbors + passive interfaces + routes + VRFs

300 + 2000 + 30,000 + 30

2000+3960+100,000+1000 in 6.2(6) and later releases

Number of neighbors + passive interfaces + routes + VRFs with aggressive timers (1s/3s)

250 + 1000 + 50,000 + 250

Guidelines and Limitations for BGP Configuration Limits

  • Each BGP scale value might vary when combined with other parameters. See these examples of scenarios tested for Cisco NX-OS Release 6.2 for better guidance.

  • All values were tested with default BGP keepalive and hold timers.

  • All scenarios were tested with the minimum and maximum configured u4route-mem and u6route-mem under the VDC as 350 MB/110 MB respectively.

Parameter Verified Limit (Cisco NX-OS 6.2)
Number of maximum eBGP peers + iBGP peers + total routes (75% IPv4, 25% IPv6) 1750 + 250 + 50,000
Number of maximum iBGP peers + eBGP peers + total routes (75% IPv4, 25% IPv6) 1750 + 250 + 50,000
Number of routes in BGP RIB (75% IPv4, 25% IPv6) 5.2 million
Number of eBGP peers with Internet feed (440,000 IPv4 routes, 12,000 IPv6 routes) 12

Guidelines and Limitations for HSRP, VRRP, and GLBP Configuration Limits

  • The number of HSRPv2 and VRRPv3 groups can be IPv4 only, IPv6 only, or a combination of both. For example, if Cisco NX-OS supports 4000 HSRP groups, it can also support 4000 VLANs with each running HSRP IPv4 groups or 2000 dual-stacked VLANs.

  • The same FHRP group ID or different group IDs can be used in different VLANs and within the same VLAN for IPv4 and IPv6 groups.

Configuration Limits for VDCs

Table 15 Configuration Limits for VDCs
Feature Verified Limit (Cisco NX-OS 6.2) Verified Limit (Cisco NX-OS 6.1) Verified Limit (Cisco NX-OS 6.0) Verified Limit (Cisco NX-OS 5.2)
VDCs with Supervisor 1 4+1 (with admin VDC feature) 4 (including 1 default VDC) 4 (including 1 default VDC) 4 (including 1 default VDC)
VDCs with Supervisor 2 4+1 (with admin VDC feature) 4+1 (with admin VDC feature) N/A N/A
VDCs with Supervisor 2e 8+1 (with admin VDC feature) 8+1 (with admin VDC feature) N/A N/A
VDC resource templates 64 64 64 64

Configuration Limits for Remote Integrated Service Engine

Feature

Verified Limit (Cisco NX-OS 6.2)

10

Number of Remote Integrated Service Engine (RISE) clients per VDC

16

Number of APBR ACEs per RISE client

1000

Number of APBR ACEs per RISE client per system

1000

Number of APBR ACEs per SVI

1000

Number of SVIs supported with ABPR per NetScaler instance

20

Number of SVIs supported with ABPR per system

20

10 All scale values for Cisco NX-OS 6.2 releases are from Cisco NX-OS Release 6.2(8) onwards.

Configuration Limits for Intelligent Traffic Director

Feature

Verified Limit (Cisco NX-OS Release 6.2)

11

Number of nodes per ITD device group

256

Number of ITD services per VDC

8 (Cisco NX-OS Release 6.2.8)

32 (Cisco NX-OS Release 6.2.10)

Number of ITD services per Nexus 7000 Series switch.

8 x maximum number of VDCs (Cisco NX-OS Release 6.2.8)

32 x maximum number of VDCs (Cisco NX-OS Release 6.210)

Number of ingress interfaces per ITD service

512

Number of virtual IP addresses per ITD service

8 (Cisco NX-OS Release 6.2.8)

16 (Cisco NX-OS Release 6.2.10)

Number of probes per ITD service

500

Number of probes per VDC

500

Number of probes per Nexus 7000 Series switch.

500 x maximum number of VDCs

11 All scale values for Cisco NX-OS 6.2 releases are from Cisco NX-OS Release 6.2(8) onwards.