Cisco Nexus 3K configuration guide | GOLINE
Goline Logo



  • In the supply and logistics sectors, email communication is pivotal. However, organizations face threats like email fraud and phishing. GOLINE SA's clients struggled with configuring email authentication protocols manually. To address this challenge, GOLINE SA became an MSP Partner of PowerDMARC, collaborating to streamline implementation and management. PowerDMARC's cloud-based platform automated DMARC, SPF, and DKIM protocols for GOLINE SA's clients. This streamlined the transition to DMARC enforcement policies, bolstering domain protection without compromising email deliverability. The intuitive platform facilitated easy navigation and provided detailed reporting for proactive issue resolution. GOLINE SA's clients experienced tangible benefits: Enhanced Email Security: Automated protocols...
  • Route RPKI validation April 1st, 2022
    RPKI is a security framework by which network owners can validate and secure the critical route updates or Border Gateway Protocol (BGP) announcements between public Internet networks. BGP is essentially the central nervous system of the Internet and one of its fundamental building blocks. The main function of BGP is to facilitate efficient routing between Autonomous Systems (AS), by building and maintaining the Internet routing table. The Internet routing table is effectively the navigation system of the Internet and without it, traffic would be unable to flow between its constituent networks. Unfortunately, routing equipment alone cannot distinguish between legitimate and malicious routing announcements,...
  • RIPE – Atlas Anchor February 17th, 2022
    We have become an even more integral part of the RIPE Atlas project by hosting an anchor, a device that allows for latency analysis of traffic between autonomous systems. Atlas anchors play an integral role in the RIPE Atlas network by acting both as enhanced RIPE Atlas probes with more measurement capacity, as well as regional measurement targets within the greater RIPE Atlas network. Anchors are able to perform many more measurements than a regular RIPE Atlas probe, and the large amount of data they collect is made available to everyone. In addition, anchors act as powerful targets that can...

Cisco Nexus 3K configuration guide

Paolo Caparrelli Cisco 22 June 2022

show policy-map system
show policy-map interface
This example shows how to reset the system qos configuration:
configure terminal
system qos
service-policy type qos input default-in-policy
service-policy type network-qos default-nq-policy
service-policy type queuing output default-out-policy
service-policy type queuing input default-in-policy
Configure Policy jumbo
#NOTA: sull'interfaccia verrà comunque mostrato MTU 1500 anche se in realtà supporterà i jumbo frame
policy-map type network-qos jumbo
  class type network-qos class-default
    mtu 9216
system qos
  service-policy type network-qos jumbo
Imposta l'indirizzo IP dell'interfaccia vrf di management
interface mgmt0
  vrf member management
  ip address
Configurazione dell'interfaccia di management
vrf context management
  ip domain-name buonvicini.local
  ip domain-list buonvicini.local
  ip name-server
  ip route
Configurazione snmp via vrf interface
snmp-server location Server-Room
snmp-server context def vrf management
snmp-server community buonsnmp group network-operator
Configurazione tftp via vrf interface
ip tftp source-interface mgmt0
Configurazione ntp client via vrf interface
ntp server use-vrf management
Impostazione timezone
clock timezone CET 1 0
clock summer-time CET 1 Sunday March 02:00 1 Sunday November 02:00 60
Banner login
banner motd ^ (invece di exec che non esiste)
Sicurezza per il login 
ip access-list quiet-sshAccess
10 permit tcp host any eq 22 log
20 permit tcp host any eq telnet log
login on-failure log
login on-success log
login block-for 10 attempts 3 within 60
login quiet-mode access-class quiet-sshAccess
Abilita il Virtual Port Channel
feature vpc
Utilizza gli SFP non supportati ufficialmente da Cisco
service unsupported-transceiver
Configura le porte da 40G mixando le 10G
hardware profile portmode 48x10G+4x40G
Configura un vPC con un altro switch
# definisce il port-channel (da fare su entrambi gli switch del cluster)
interface port-channel2
  description — Port-Channel2 to csco-sw20 –
  switchport mode trunk
  vpc 2
# aggiunge un'interfaccia 10G alla membership della vPC 2
interface Ethernet1/45
  description — Port-Channel2 to Te1/15 > csco-sw20 –
  switchport mode trunk  
  channel-group 2
Mostra lo stato dei virtual port channel (vPC)
show vpc bri
Mostra lo stato di sincronia del clock
#show ntp peer-status
Ping usando l'interfaccia di management
#ping vrf management
0 0 votes
Article Rating
Notify of
Inline Feedbacks
View all comments
Would love your thoughts, please comment.x