You can configure a port as a Layer 2 interface or a Layer 3 interface. A routed interface is a physical port that can route IP traffic to another device. A routed interface is a Layer 3 interface only and does not support Layer 2 protocols, such as the Spanning Tree Protocol (STP).

All Ethernet ports are routed interfaces by default. You can change this default behavior with the CLI setup script.

You can assign an IP address to the port, enable routing, and assign routing protocol characteristics to this routed interface.

You can also create a Layer 3 port channel from routed interfaces. For more information about port channels, see the “Configuring Port Channels” section.

Routed interfaces and subinterfaces support exponentially decayed rate counters. Cisco NX-OS tracks the following statistics with these averaging counters:

• Input packets/sec

• Output packets/sec

• Input bytes/sec

• Output bytes/sec

You can create virtual subinterfaces on a parent interface configured as a Layer 3 interface. A parent interface can be a physical port.

Subinterfaces divide the parent interface into two or more virtual interfaces on which you can assign unique Layer 3 parameters such as IP addresses and dynamic routing protocols. The IP address for each subinterface should be in a different subnet from any other subinterface on the parent interface.

You create a subinterface with a name that consists of the parent interface name (for example, Ethernet 2/1) followed by a period and then by a number that is unique for that subinterface. For example, you could create a subinterface for Ethernet interface 2/1 named Ethernet 2/1.1 where .1 indicates the subinterface.

Cisco NX-OS enables subinterfaces when the parent interface is enabled. You can shut down a subinterface independent of shutting down the parent interface. If you shut down the parent interface, Cisco NX-OS shuts down all associated subinterfaces as well.

One use of subinterfaces is to provide unique Layer 3 interfaces to each virtual local area network (VLAN) supported by the parent interface. In this scenario, the parent interface connects to a Layer 2 trunking port on another device. You configure a subinterface and associate the subinterface to a VLAN ID using 802.1Q trunking.

The following figure shows a trunking port from a switch that connects to router B on interface E 2/1. This interface contains three subinterfaces that are associated with each of the three VLANs carried by the trunking port.

Figure 1. Subinterfaces for VLANs

For more information about VLANs, see the Cisco Nexus 9000 Series NX-OS Layer 2 Switching Configuration Guide.

A VLAN interface, or switch virtual interface (SVI), is a virtual routed interface that connects a VLAN on the device to the Layer 3 router engine on the same device. Only one VLAN interface can be associated with a VLAN, but you need to configure a VLAN interface for a VLAN only when you want to route between VLANs or to provide IP host connectivity to the device through a virtual routing and forwarding (VRF) instance that is not the management VRF. When you enable VLAN interface creation, Cisco NX-OS creates a VLAN interface for the default VLAN (VLAN 1) to permit remote switch administration.

You must enable the VLAN network interface feature before you can see configure it. The system automatically takes a checkpoint prior to disabling the feature, and you can roll back to this checkpoint. See the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide for information on rollbacks and checkpoints.

Note	You cannot delete the VLAN interface for VLAN 1.

You can route across VLAN interfaces to provide Layer 3 inter-VLAN routing by configuring a VLAN interface for each VLAN that you want to route traffic to and assigning an IP address on the VLAN interface. For more information about IP addresses and IP routing, see the Cisco Nexus 9000 Series NX-OS Unicast Routing Configuration Guide.

The following figure shows two hosts connected to two VLANs on a device. You can configure VLAN interfaces for each VLAN that allows Host 1 to communicate with Host 2 using IP routing between the VLANs. VLAN 1 communicates at Layer 3 over VLAN interface 1 and VLAN 10 communicates at Layer 3 over VLAN interface 10.

Figure 2. Connecting Two VLANs with VLAN interfaces

A loopback interface is a virtual interface with a single endpoint that is always up. Any packet transmitted over a loopback interface is immediately received by this interface. Loopback interfaces emulate a physical interface. You can configure up to 1024 loopback interfaces, numbered 0 to 1023.

You can use loopback interfaces for performance analysis, testing, and local communications. Loopback interfaces can act as a termination address for routing protocol sessions. This loopback configuration allows routing protocol sessions to stay up even if some of the outbound interfaces are down.

Layer 3 interfaces support stateful and stateless restarts. After the switchover, Cisco NX-OS applies the runtime configuration after the switchover.

See the Cisco Nexus 9000 Series NX-OS High Availability and Redundancy Guide for complete information about high availability.

Layer 3 interfaces support Virtual Routing and Forwarding instances (VRFs). VRFs exist within virtual device contexts (VDCs). By default, Cisco NX-OS places you in the default VDC and default VRF .

You can configure up to 1024 loopback interfaces per VDC.

You can associate the interface with a VRF. For VLAN interfaces, you must configure the VLAN interface in the same VDC as the VLAN.

See the Cisco Nexus 9000 Series NX-OS Unicast Routing Configuration Guide for information about configuring an interface in a VRF.

Note	You must assign an interface to a VRF before you configure the IP address for that interface.

1.    configure terminal


2.    interface ethernet slot/port


3.    no switchport


4.    [ip address ip-address/length | ipv6 address ipv6-address/length]


5.    show interfaces


6.    no shutdown


7.    copy running-config startup-config

switch# configure terminal
switch(config)#

switch(config)# interface ethernet 2/1
switch(config-if)#

switch(config-if)# no switchport

switch(config-if)# ip address 192.0.2.1/8

switch(config-if)# ipv6 address 2001:0DB8::1/8

switch(config-if)# show interfaces ethernet 2/1

switch# 
switch(config-if)# int e2/1
switch(config-if)# no shutdown

switch(config)# copy running-config startup-config  

• Use the medium command to set the interface medium to either point to point or broadcast.

Command	Purpose
medium {broadcast | p2p} Example: switch(config-if)# medium p2p medium p2p	Configures the interface medium as either point to point or broadcast.

Note	The default setting is broadcast, and this setting does not appear in any of the show commands. However, if you do change the setting to p2p, you will see this setting when you enter the show running config command.

• Use the switchport command to convert a Layer 3 interface into a Layer 2 interface.

Command	Purpose
switchport Example: switch(config-if)# switchportswitchport	Configures the interface as a Layer 2 interface and deletes any configuration specific to Layer 3 on this interface.

• This example shows how to configure a routed interface:

  switch# configure terminal
  switch(config)# interface ethernet 2/1
  switch(config-if)# no switchport
  switch(config-if)# ip address 192.0.2.1/8 
  switch(config-if)# copy running-config startup-config

  The default setting for interfaces is routed. If you want to configure an interface for Layer 2, enter the switchport command. Then, if you change a Layer 2 interface to a routed interface, enter the no switchport command.

1.    configure terminal


2.    interface ethernet slot/port.number


3.    [ip address ip-address/length | ipv6 address ipv6-address/length]


4.    encapsulation dot1Q vlan-id


5.    show interfaces


6.    copy running-config startup-config

switch# configure terminal
switch(config)#

switch(config)# interface ethernet 2/1.1
switch(config-subif)#

switch(config-subif)# ip address 192.0.2.1/8

switch(config-subif)# ipv6 address 2001:0DB8::1/8

switch(config-subif)# encapsulation dot1Q 33

switch(config-subif)# show interfaces ethernet 2/1.1

switch(config)# copy running-config startup-config  

You can configure one or more subinterfaces on a port-channel interface.

Note	Subinterfaces on a port-channel interface do not support multicast routing, router ACLs, QoS, policy-based routing (PBR), SPAN, or ERSPAN.

1.    configure terminal


2.    interface port-channel channel-id.number


3.    [ip address ip-address/length | ipv6 address ipv6-address/length]


4.    encapsulation dot1Q vlan-id


5.    show interfaces


6.    copy running-config startup-config

switch# configure terminal
switch(config)#

switch(config)# interface port-channel 100.1
switch(config-subif)#

switch(config-subif)# ip address 192.0.2.1/8

switch(config-subif)# ipv6 address 2001:0DB8::1/8

switch(config-subif)# encapsulation dot1Q 33

switch(config-subif)# show interfaces ethernet 2/1.1

switch(config)# copy running-config startup-config  

switch# configure terminal
switch(config)# interface port-channel 115.3
switch(config-subif)# ip address 141.143.101.2/24
switch(config-subif)# encapsulation dot1q 3
switch(config-subif)# copy running-config startup-config

You can configure the bandwidth for a routed interface, port channel, or subinterface. Higher layer protocols use a bandwidth parameter to calculate path costs. You can configure the bandwidth on a subinterface with one of the following methods:

• Explicit—Sets the bandwidth value for the subinterface directly

• Inherit—Sets the bandwidth that all subinterfaces inherit from the parent interface as either a specific value or as the bandwidth of the parent interface.

If you do not set the subinterface bandwidth or configure it to inherit the bandwidth from the parent interface, Cisco NX-OS determines the subinterface bandwidth as follows:

• If the parent interface is up, the bandwidth of the subinterface is the same as the operational speed of the parent interface. For ports, the subinterface bandwidth is the configured or negotiated link speed. For port channels, the subinterface bandwidth is the aggregate of the link speeds of individual members of the port channel.

• If the parent interface is down, the bandwidth of the subinterface depends on the type of parent interface:

  • 1-Gb/s Ethernet ports have 1-Gb/s bandwidth for subinterfaces.

  • 10-Gb/s Ethernet ports have 10-Gb/s bandwidth for subinterfaces.

  • 100-Gb/s Ethernet ports have 100-Gb/s bandwidth for subinterfaces.

To configure the bandwidth of an interface, use the following command in interface mode:

switch(config-if)# 100000bandwidth 100000

To configure subinterfaces to inherit the bandwidth from the parent interface, use the following command in interface mode:

switch(config-if)# inherit bandwidth inherit 10000000

1.    configure terminal


2.    feature interface-vlan


3.    interface vlan number


4.    [ip address ip-address/length | ipv6 address ipv6-address/length]


5.    show interface vlan number


6.    show interface status error policy [detail]


7.    no shutdown


8.    copy running-config startup-config

switch# configure terminal
switch(config)#

switch(config)# feature interface-vlan

switch(config)# interface vlan 10
switch(config-if)#

switch(config-if)# ip address 192.0.2.1/8

switch(config-if)# ipv6 address 2001:0DB8::1/8

switch(config-if)# show interface vlan 10

switch(config-if)# show interface status error policy detail

switch(config)# int e3/1
switch(config)# no shutdown

switch(config-if)# copy running-config startup-config  

switch# configure terminal
switch(config)# feature interface-vlan
switch(config)# interface vlan 10
switch(config-if)# ip address 192.0.2.1/8
switch(config-if)# copy running-config startup-config

1.    configure terminal


2.    interface loopback instance


3.    [ip address ip-address/length | ipv6 address ipv6-address/length]


4.    show interface loopback instance


5.    copy running-config startup-config

switch# configure terminal
switch(config)#

switch(config)# interface loopback 0
switch(config-if)#

switch(config-if)# ip address 192.0.2.1/8

switch(config-if)# ipv6 address 2001:0DB8::1/8

switch(config-if)# show interface loopback 0

switch(config-if)# copy running-config startup-config  

switch# configure terminal
switch(config)# interface loopback 0
switch(config-if)# ip address 192.0.2.1/8
switch(config-if)# copy running-config startup-config

1.    configure terminal


2.    interface interface-type number


3.    vrf member vrf-name


4.    ip address ip-prefix/length


5.    show vrf [vrf-name] interface interface-type number


6.    copy running-config startup-config

switch# configure terminal
switch(config)#

switch(config)# interface loopback 0
switch(config-if)#

switch(config-if)# vrf member RemoteOfficeVRF

switch(config-if)# ip address 192.0.2.1/16

switch(config-vrf)# show vrf Enterprise interface loopback 0

switch(config-if)# copy running-config startup-config  

switch# configure terminal
switch(config)# interface loopback 0
switch(config-if)# vrf member RemoteOfficeVRF
switch(config-if)# ip address 209.0.2.1/16
switch(config-if)# copy running-config startup-config