Cisco Virtual Security Gateway for Nexus 1000V Series Switch Configuration Guide, Release 4.2(1)VSG1(4.1)
New and Changed Information
Downloads: This chapterpdf (PDF - 85.0KB) The complete bookPDF (PDF - 2.63MB) | Feedback

New and Changed Information

Table Of Contents

New and Changed Information


New and Changed Information


This chapter provides release-specific information for each new and changed feature in the Cisco Virtual Security Gateway for Nexus 1000V Series Switch Configuration Guide, Release 4.2(1)VSG1(4.1). The latest version of this document is available at the following Cisco website: http://www.cisco.com/go/techdocs.

To check for additional information about Release 4.2(1)VSG1(4.1), see the Cisco Virtual Security Gateway for Nexus 1000V Series Switch Release Notes, Release 4.2(1)VSG1(4.1) available at the following Cisco website: http://www.cisco.com/go/techdocs.

Table 1 summarizes the new and changed features for the Cisco Virtual Security Gateway for Nexus 1000V Series Switch Configuration Guide, Release 4.2(1)VSG1(4.1).

Table 1 New and Changed Information in Release 4.2(1)VSG1(4.1)

Feature
Description
Changed in Release
Where Documented

vPath Service Chaining

Cisco Nexus 1000V release 1.5(2) supports a service chain that allows the packets on a flow to be directed to more than one service node.

4.2(1)VSG1(4)

Cisco vPath Service Chaining

Chapter 3—Configuring the Cisco Virtual Security Gateway

VXLAN, Fragmentation and Jumbo Frames,

Cisco VSG in Layer 2 mode can exist on a VXLAN. For jumbo frames, the MTU of the client and server VMs are reduced by the vPath encapsulation size.

Configuring the vservice Node

SNMP Configuration

Added an SNMP overview, SNMPv3, and a reference to the SNMP configuration.

 

Configuring SNMP, page 5-1

Cisco VSG support in the Layer 2 and Layer 3 mode

Added a Timeout feature for the fast connection between the Cisco VSG and VEM.

4.2(1)VSG1(3.1)

Fast Path Connection Timeouts

 

Added the Cisco VSG deployment in the Layer 3 mode. The VEM and the Cisco VSG communicate with each other through a vmknic.

Cisco VSG Deployment Scenarios

 

Added the sequences to follow when configuring a Cisco VSG in the Layer 2 and Layer 3 mode.

Sequence in Configuring a Cisco VSG in the Layer 2 Mode

Sequence in Configuring a Cisco VSG in the Layer 3 Mode

 

Added the sequences to follow when migrating the Cisco VSG deployment from Layer 2 to Layer 3 mode.

Migrating from Layer 2 Mode to Layer 3 Mode

 

Added configuration of the IP address and the security port-profile on the VSM for a Cisco VSG in the Layer 2 and Layer 3 mode.

Configuring the vservice Node

The Cisco VSG in Layer 2 mode can exist on a VXLAN.

Cisco VSG support in the Layer 2 and Layer 3 mode

Added vPath ping command examples to verify various connections and reachable attributes of the Cisco VSG VSN in the Layer 3 mode.

vPath Ping Command for the Layer 3 Mode

TCP state-checks

Added TCP state-checks (invalid-ack, seq-past-window, window-variation) on the vPath.

4.2(1)VSG1(4.1)

Configuring TCP State Checks for Cisco VSGs in the vPath

vPath Ping

Added this feature, which verifies the connectivity and reachability of the VSG VSNs in the vPath.

4.2(1)VSG1(2)

Configuring the vservice Path