Feedback
Contents
Configuring VLANs
This chapter contains the following sections:
- Information About VLANs
- Guidelines and Limitations
- Default Settings
- Configuring a VLAN
- Verifying the Configuration
- Feature History for VLANs
Information About VLANs
Physical NICs are always assigned as trunk ports, which transmit either VLAN tagged or untagged packets. A vswitch can have the following VLAN configurations:
Configuration Description External switch tagging (EST)
Physical NICs are untagged and all VNICs are access ports. EST is enabled by default and is used when the VLAN for the VNIC is set to 0 or left blank.
Virtual switch tagging (VST)
All physical NIC ports are tagged and VNICs are access ports. VST is enabled whenever the VNIC’s VLAN is set to any value between 1 and 4094 inclusive.
Virtual machine guest tagging (VGT)
All physical NIC ports are tagged. VNICs are trunk ports. To configure VGT, the VLAN is set to 4095 on the VNIC connected to the virtual machine.
Physical ports are always trunk ports by default. The virtual machine interfaces can be either access ports or trunk ports. If a VEthernet interface is set as a trunk port, the VLAN is 4095.
VEthernet interfaces assigned to specific VLANs are tagged with the VLAN when transmitted. A VEthernet interface that is not assigned to a specific VLAN, or assigned to VLAN 0, are transmitted as untagged on the physical NIC interfaces. On the transmit side, this is equivalent to the native VLAN available in Cisco switches. When the VLAN is not specified, it is assumed to be 0.
The following table summarizes the actions taken on packets received by the virtual ethernet module (VEM) based on VLAN tagging.
Guidelines and Limitations
In accordance with the IEEE 802.1Q standard, up to 4094 VLANs (numbered 1-4094) are supported in Cisco Nexus 1000V, and are organized in the following table:
Note
For VLAN configuration limits, see Layer 2 Switching Configuration Limits.
Table 2 Cisco Nexus 1000V VLAN Numbering VLANs Numbers Range Usage 1
Normal
Cisco Nexus 1000V default. You can use this VLAN, but you cannot modify or delete it.
2–1005
Normal
You can create, use, modify, and delete these VLANs.
1006-4094
Extended
You can create, name, and use these VLANs. You cannot change the following parameters:
The extended system ID is always automatically enabled.
3968-4047 and 4094
Internally allocated
You cannot use, create, delete, or modify these VLANs. You can display these VLANs.
Cisco Nexus 1000V allocates these 80 VLANs, plus VLAN 4094, for features, like diagnostics, that use internal VLANs for their operation.
NoteFor information about diagnostics, see the document, Cisco Nexus 1000V System Management Configuration Guide.
Default Settings
Table 3 Default VLAN Settings Parameters Default VLAN assignment for all interfaces and all ports configured as switchports
VLAN 1
VLAN name
VLANxxxx where xxxx represent four numeric digits (including leading zeroes) equal to the VLAN ID number
Shut state
No shutdown
Operational state
Active
External switch tagging (EST)
Enabled
Physical ports
Trunk ports
IGMP snooping
Enabled
Configuring a VLAN
Creating a VLAN
Use this procedure to do one of the following:
- Create a single VLAN that does not already exist.
- Create a range of VLANs that do not already exist.
- Delete an existing VLAN.
NoteAll interfaces and all ports configured as switchports are in VLAN 1 by default.
Before You BeginProcedure
- You are logged in to the CLI in EXEC mode.
- VLAN characteristics are configured in the VLAN configuration mode. To configure a VLAN that is already created, see Configuring VLAN Characteristics.
- You are familiar with the VLAN numbering in the Guidelines and Limitations section.
- Newly-created VLANs remain unused until Layer 2 ports are assigned to them.
- When you delete a specified VLAN, the ports associated to that VLAN are shut down and no traffic flows. When you delete a specified VLAN from a trunk port, only that VLAN is shut down and traffic continues to flow on all the other VLANs through the trunk port. However, the system retains all the VLAN-to-port mapping for that VLAN, and when you reenable, or re-create, that specified VLAN, the system automatically reinstates all the original ports to that VLAN. Note that the static MAC addresses and aging time for that VLAN are not restored when the VLAN is reenabled.
NoteBe aware that the Cisco NX-OS commands may differ from those used in Cisco IOS.
Command or Action Purpose
Step 1 switch# configure terminal Enters global configuration mode.
Step 2 switch(config)# show vlan Displays the VLANs that already exist.
Step 3 switch(config)# { no } vlan { vlan-id | vlan-range } Creates or deletes, and saves in the running configuration, a VLAN or a range or VLANs.
To configure the VLAN, see the procedure, Configuring VLAN Characteristics.
Note If you enter a VLAN ID that is assigned to an internally allocated VLAN, the system returns an error message.
From the VLAN configuration mode, you can also create and delete VLANs.
For information about Assigning Layer 2 interfaces to VLANs (access or trunk ports), see theCisco Nexus 1000V Interface Configuration Guide.
For information about Configuring ports as VLAN access or trunk ports and assigning ports to VLANs, see the Cisco Nexus 1000V Interface Configuration Guide.
Step 4 switch(config-vlan)# show vlan id vlan-id (Optional) Displays the VLAN configuration.
Step 5 switch(config-vlan)# copy running-config startup-config (Optional) Saves the running configuration persistently through reboots and restarts by copying it to the startup configuration.
In the following example VLAN 5 is created and you are automatically placed into the VLAN configuration mode for VLAN 5:
switch# configure terminal switch(config)# vlan 5 switch(config-vlan)#The following example shows the range, VLAN 15-20, being created. The VLANs in the range are activated, and you are automatically placed into VLAN configuration mode for VLANs 15-20.
NoteIf you create a range of VLANs that includes an unusable VLAN, all VLANs in the range are created except those that are unusable; and Cisco Nexus 1000V returns a message listing the failed VLANs.
switch# configure terminal switch(config)# vlan 15-20 switch(config-vlan)#The following example shows VLAN 3967 being deleted, using the no form of the command:
switch# configure terminal switch(config)# no vlan 3967 switch(config)#The following example displays the VLAN 5 configuration:
switch# configure terminal switch(config)# vlan 5 switch(config-vlan)# show vlan id 5 VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------- 5 VLAN0005 active VLAN Type ---- ----- 5 enet Remote SPAN VLAN ---------------- Disabled Primary Secondary Type Ports ------- --------- --------------- ------------------------------------------- n1000v(config-vlan)# copy run start [########################################] 100% n1000v(config)#Configuring VLAN Characteristics
Use this procedure to configure the following for a VLAN that has already been created:
NoteCommands entered in the VLAN configuration mode are immediately saved to the running configuration.
Before You Begin You are logged in to the CLI in EXEC mode.Procedure
NoteSome characteristics cannot be modified on some VLANs. For more information, see the VLAN numbering described in the Guidelines and Limitationssection.
n1000v# configure terminal n1000v(config)# vlan 5 n1000v(config-vlan)# name accounting n1000v(config-vlan)# state active n1000v(config-vlan)# no shutdown n1000v(config-vlan)# show vlan brief VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------- 1 default active Eth2/1, Eth2/2, Eth2/3, Eth2/5 Eth2/7, Eth2/8, Eth2/9, Eth2/10 Eth2/15, Eth2/21, Eth2/22 Eth2/23, Eth2/24, Eth2/25 Eth2/46, Eth2/47, Eth2/48 5 accounting active 6 VLAN0006 active 7 VLAN0007 active 8 test active 9 VLAN0009 active 10 VLAN0010 active 50 VLAN0050 active Eth2/6 100 trunked active 200 VLAN0200 active 201 VLAN0201 active 202 VLAN0202 active 3966 VLAN3966 active n1000v(config)#Verifying the Configuration
Example for show vlan summary
switch# show vlan summary Number of existing VLANs : 13 Number of existing user VLANs : 12 Number of existing extended VLANs : 1 switch#Example for show vlan brief
switch# show vlan brief VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------- 1 default active Eth2/1, Eth2/2, Eth2/3, Eth2/5 Eth2/7, Eth2/8, Eth2/9, Eth2/10 Eth2/15, Eth2/21, Eth2/22 Eth2/23, Eth2/24, Eth2/25 Eth2/46, Eth2/47, Eth2/48 5 accounting active 6 VLAN0006 active 7 VLAN0007 active 8 test active 9 VLAN0009 active 10 VLAN0010 active 50 VLAN0050 active Eth2/6 100 trunked active 200 VLAN0200 active 201 VLAN0201 active 202 VLAN0202 active 3966 VLAN3966 active switch#
