Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document.
Note: Even the most advanced machine translation cannot match the quality of professional translators.
Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Management Network Deployment Solution Analysis
The management network can be deployed in out-of-band or in-band mode, as shown in Figure 2-6. The out-of-band management mode is recommended.
Out-of-Band Management (Recommended)
Deployment planning: Connect management network interfaces on routers, spine nodes, leaf nodes, firewalls, and servers to an out-of-band management switch, which serves as the out-of-band management gateway.
Solution suggestions: The out-of-band management network interfaces are independent of the forwarding chips of devices. Faults on the forwarding plane are isolated from service interfaces. Therefore, it is recommended that out-of-band management be deployed.
In-Band Management
Deployment planning:
- Deploy two-level M-LAG networking for server leaf nodes and firewalls. Configure VLANIF interfaces (VLANIF 20 in the preceding figure) and management IP addresses on the devices. Deploy active-active gateways (with the same IP address and MAC address) on spine nodes.
- Connect BMC interfaces on the server to the server leaf nodes, and set up an independent VLAN (VLAN 30 in the preceding figure). Deploy active-active gateways on the spine nodes.
- Configure loopback addresses for spine nodes and PEs.
Solution suggestions:
- In-band management can be used when the network scale is small and the cost is limited.
- In-band management can be used when some software management devices require high reliability. (In out-of-band management, only one management network interface is available.) An out-of-band management network can be deployed at the same time to assist login management (optional).