Global VLAN
Cisco UCS Central enables you to define global VLANs in LAN cloud at the domain group root or at the domain group level. You can create a single VLAN or multiple VLANs in one operation.
Global VLAN resolution takes place in Cisco UCS Central prior to global service profiles deployment. If a global service profile references a global VLAN, and that VLAN does not exist, the global service profile deployment fails in the Cisco UCS domain due to insufficient resources. All global VLANs created in Cisco UCS Central must be resolved before deploying that global service profile.
Global VLANs are pushed to Cisco UCS along with the global service profiles that reference them. Global VLAN information is visible to Cisco UCS Manager only if a global service profile with reference to a global VLAN is deployed in that UCS domain. When a global VLAN is deployed and becomes available in the UCS domain, locally-defined service profiles and policies can reference the global VLAN. A global VLAN is not deleted when a global service profile that references it is deleted.
VLAN Org Permission
All VLANs configured in Cisco UCS Central are common to the orgs in which they are created. You must assign organization permissions before the Cisco UCS Manager instances that are part of the organizations can consume the resources. When you assign org permission to a VLAN, the VLAN is visible to those organizations, and available to be referenced in service profiles maintained by the Cisco UCS Manager instances that are part of the organization.
VLAN name resolution takes place within the hierarchy of each domain group. If a VLAN with the same name exists in multiple domain groups, the organization permissions are applied to all VLANs with the same name across the domain groups.
You can create, modify or delete VLAN org permission.
Note |
Make sure to delete the VLAN org permission from the same org you created it in. On Cisco UCS Central GUI you can view the org structure where this VLAN is associated. But at the sub org level on the Cisco UCS Central CLI, you cannot view the VLAN org permission association hierarchy, so if you try to delete the VLAN at the sub org level on the Cisco UCS Central CLI the delete operation will fail. |
Creating a Single VLAN
This procedure describes how to create a single VLAN in the domain group root or in a specifc domain group.
Procedure
Command or Action | Purpose | |||
---|---|---|---|---|
Step 1 |
UCSC # connect resource-mgr |
Enters resource manager mode. |
||
Step 2 |
UCSC(resource-mgr) # scope domain-group domain-name |
Enters the UCS domain group root. |
||
Step 3 |
UCSC(resource-mgr) # scope eth-uplink |
Enters Ethernet uplink command mode. |
||
Step 4 |
UCSC(resource-mgr) /domain-group/eth-uplink # create vlan vlan-name vlan-id |
Creates a VLAN and assigns a VLAN ID.
|
||
Step 5 |
UCSC(resource_mgr)/domain-group/eth-uplink/vlan # set mcastpolicy {default | policy-name} |
(Optional) Assigns a specific multicast policy name. If you do not enter a multicast policy name, the name is resolved from the Cisco UCS Manager domain upon deployment. |
||
Step 6 |
UCSC(resource-mgr) /domain-group/eth-uplink/vlan# commit-buffer |
Commits the transaction to the system. |
Example
The following example shows how to create a VLAN named Administration in the domain group root and ssign it VLAN ID 15:
UCSC# connect resource-mgr
UCSC(resource-mgr)# scope domain-group /
UCSC(resource-mgr) /domain-group # scope eth-uplink
UCSC(resource-mgr) /domain-group/eth-uplink create vlan Administration 15
UCSC(resource-mgr) /domain-group/eth-uplink/vlan* # commit-buffer
UCSC(resource-mgr) /domain-group/eth-uplink/vlan #
The following example shows how to create a VLAN named Administration in domain group 12 and assign it VLAN ID 15:
UCSC# connect resource-mgr
UCSC(resource-mgr)# scope domain-group 12
UCSC(resource-mgr) /domain-group # scope eth-uplink
UCSC(resource-mgr) /domain-group/eth-uplink create vlan Administration 15
UCSC(resource-mgr) /domain-group/eth-uplink/vlan* # commit-buffer
UCSC(resource-mgr) /domain-group/eth-uplink/vlan #
Creating Multiple VLANs
This procedure describes how to create multiple VLANs.
Procedure
Command or Action | Purpose | |||
---|---|---|---|---|
Step 1 |
UCSC# connect resource-mgr |
Enters resource manager mode. |
||
Step 2 |
UCSC(resource-mgr) #scope domain-group domain-group |
Enters the UCS domain group root. |
||
Step 3 |
UCSC(resource-mgr) #scope eth-uplink . |
Enters Ethernet uplink command mode. |
||
Step 4 |
UCSC(resource-mgr) /domain-group/eth-uplink #create vlan vlan-name vlan-id |
Creates a VLAN and with the VLAN name and VLAN ID you enter.
|
||
Step 5 |
UCSC (resource-mgr) /domain-group/eth-uplink/vlan # set mcastpolicy {default | policy-name} |
(Optional) Assigns a particular multicast policy name. If you do not enter a multicast policy name, the name is resolved from the Cisco UCS Manager upon deployment. |
||
Step 6 |
UCSC (resource-mgr) /domain-group/eth-uplink/vlan # commit-buffer |
Commits the transaction to the system. |
Example
UCSC# connect resource-mgr
UCSC(resource-mgr)# scope domain-group 12
UCSC(resource-mgr) /domain-group # scope eth-uplink
UCSC(resource-mgr) /domain-group/eth-uplink create vlan Administration 15
UCSC(resource-mgr) /domain-group/eth-uplink/vlan* # set mcastpolicy default
UCSC(resource-mgr) /domain-group/eth-uplink/vlan* # create vlan Finance 20
UCSC(resource-mgr) /domain-group/eth-uplink/vlan* # set mcastpolicy mpolicy
UCSC(resource-mgr) /domain-group/eth-uplink/vlan* # commit-buffer
UCSC(resource-mgr) /domain-group/eth-uplink/vlan