评分并提供意见反馈 :
华为采用机器翻译与人工审校相结合的方式将此文档翻译成不同语言,希望能帮助您更容易理解此文档的内容。 请注意:即使是最好的机器翻译,其准确度也不及专业翻译人员的水平。 华为对于翻译的准确性不承担任何责任,并建议您参考英文文档(已提供链接)。
配置交换机(可选)
以太网交换机
本章节主要介绍以太网交换机的相关配置操作,包括配置VLAN、配置端口绑定。
配置VLAN
在一个以太网网络中,当连接了大量的主机的时候,各主机之间的相互通信会产生大量的广播报文。一个主机发送广播报文,同一个以太网中的所有主机都会接收到这些报文,造成带宽的浪费。同时,同一个以太网中的主机之间可以相互访问,数据存在安全隐患。
为了避免以上情况的发生,可以将以太网中的主机划分为若干个逻辑工作组,每个逻辑工作组即是一个VLAN。下面我们以Quidway 2700以太网交换机(华为技术有限公司生产)详细介绍一下如何配置VLAN。
该例子中,我们创建了两个VLAN(VLAN 1000 和VLAN 2000)。其中VLAN 1000包括端口:GE 1/0/1到1/0/16;VLAN 2000包括端口:GE 1/0/20到1/0/24。
- 进入系统视图。
<Quidway>system-view System View: return to User View with Ctrl+Z.
- 创建VLAN 1000,并添加端口。
[Quidway]VLAN 1000 [Quidway-vlan1000]port GigabitEthernet 1/0/1 to GigabitEthernet 1/0/16
- 配置VLAN的IP。
[Quidway-vlan1000]interface VLAN 1000 [Quidway-Vlan-interface1000]ip address 1.0.0.1 255.255.255.0
- 创建VLAN2000,加入端口并配置IP。
[Quidway]VLAN 2000 [Quidway-vlan2000]port GigabitEthernet 1/0/20 to GigabitEthernet 1/0/24 [Quidway-vlan2000]interface VLAN 2000 [Quidway-Vlan-interface2000]ip address 2.0.0.1 255.255.255.0
配置端口绑定
存储系统和主机系统之间采用点对点的连接时,带宽可能无法满足存储数据传输的需求。而且点对点的连接可能无法实现冗余备份网络连接。通过配置端口绑定(链路聚合),可以提供更大的带宽,实现多条链路的负载均衡。
分类
以太网链路聚合分为以下三种方式:
- 手工聚合
手工命令配置加入一个聚合组,要求端口的链路类型必须一致。
- 静态聚合
手工命令配置加入一个聚合组,要求加入聚合组的端口要开启LACP 协议,且端口的链路类型必须一致。
- 动态聚合
协议动态指定加入聚合组的端口,要求这些端口要开启LACP 协议,且要求端口的速率、双工模式、链路类型必须一致。
三种链路聚合方式的比较如表5-2所示:
配置
目前华为OceanStor存储设备仅支持“802.3ad”模式的端口绑定,即动态链接聚合策略。创建一个聚合组,让多个网卡端口工作在同一个激活的聚合体下,共享相同的速率和双工模式。存储设备上的iSCSI主机端口配置端口绑定后,对端的交换机也要进行相应的配置,否则存储设备和交换机之间的链路不通。
本章节以交换机上的端口GE 1/0/1、GE 1/0/2和存储系统上iSCSI主机端口P2、P3做端口绑定为例进行描述。在实际配置过程中,请按照实际情况调整相关的参数。
首先,我们完成存储系统上的端口绑定。
- 登录OceanStor DeviceManager管理软件,进入端口绑定界面。
在OceanStor DeviceManager管理软件导航树上依次选择“资源分配 > 端口 > 以太网端口”。
- 配置端口绑定。
选择需要进行绑定的端口(如本例中ID为P2和P3的端口),并在菜单栏上依次选择“绑定端口 > 绑定”。
系统弹出“iSCSI端口绑定”对话框。在“绑定名称”文本框输入绑定后的端口命名,然后单击“确定”。
系统弹出“警告”对话框。确认后勾选“我已阅读上述信息,了解执行此操作带来的后果。”前的复选框,然后单击“确定”。
系统弹出“信息”提示框,提示“操作成功”。单击“确定”完成配置操作。
至此,存储系统上的端口绑定完成,接下来,需要在交换机上配置链路聚合。交换机上的配置指令如下所示:
<Quidway>system-view System View: return to User View with Ctrl+Z. [Quidway-Switch]interface GigabitEthernet 1/0/1 [Quidway-Switch-GigabitEthernet1/0/1]lacp enable LACP is already enabled on the port! [Quidway-Switch-GigabitEthernet1/0/1]quit [Quidway-Switch]interface GigabitEthernet 1/0/2 [Quidway-Switch-GigabitEthernet1/0/2]lacp enable LACP is already enabled on the port! [Quidway-Switch-GigabitEthernet1/0/2]quit
通过上面的命令,将端口GE 1/0/1和GE 1/0/2上的LACP都开启,系统会自动检测端口的状态,并将其加入到一个聚合组。
FCoE交换机
命令介绍
以SSH登录交换机进行管理,输入“?”会弹出当前界面上支持的所有命令:
switch# ?
callhome Callhome commands
cd Change current directory
cfs CFS parameters
checkpoint Create configuration rollback checkpoint
clear Reset functions
cli CLI commands
clock Manage the system clock
configure Enter configuration mode
copy Copy from one file to another
debug Debugging functions
debug-filter Enable filtering for debugging functions
delete Delete a file or directory
diff-clean Remove temp files created by '| diff' filters
dir List files in a directory
discover Discover information
dos2nxos DOS to NXOS text file format converter
echo Echo argument back to screen (useful for scripts)
ethanalyzer Configure cisco packet analyzer
event Event Manager commands
fcdomain Fcdomain internal command
fcping Ping an N-Port
fctrace Trace the route for an N-Port.
find Find a file below the current directory
fips Enable/Disable FIPS mode
gunzip Uncompresses LZ77 coded files
gzip Compresses file using LZ77 coding
hardware Change hardware usage settings
install Upgrade software
ip Configure IP features
ipv6 Configure IPv6 features
load Load system image
locator-led Turn on locator beacon
mkdir Create new directory
modem Modem commands
move Move files
mping Run mping
mtrace Trace multicast path from receiver to source
no Negate a command or set its defaults
ntp NTP configuration
ping Test network reachability
ping6 Test IPv6 network reachability
pktmgr Display Packet Manager information
purge Deletes unused data
pwd View current directory
reload Reboot the entire box
restart Manually restart a component
rmdir Delete a directory
rollback Rollback configuration
routing-context Set the routing context
run-script Run shell scripts
san-port-channel Port-Channel related commands
scripting Configure scripting parameters
send Send message to open sessions
setup Run the basic SETUP command facility
show Show running system information
sleep Sleep for the specified number of seconds
sockets Display sockets status and configuration
ssh SSH to another system
system System management commands
system System configuration commands
tac-pac Save tac info in a compressed .gz file at specific location
tail Display the last part of a file
tar Archiving operations
tclsh Source tclsh script
telnet Telnet to another system
telnet6 Telnet6 to another system using IPv6 addressing
terminal Set terminal line parameters
test Test command
traceroute Traceroute to destination
traceroute6 Traceroute6 to destination
undebug Disable Debugging functions (See also debug)
write Write current configuration
xml Xml agent
xml Module XML agent
zone Execute Zone Server commands
zoneset Execute zoneset commands
end Go to exec mode
exit Exit from command interpreter
pop Pop mode from stack or restore from name
push Push current mode to stack or save it under name
where Shows the cli context you are in
switch#
以查询型号以及版本为例:
switch# show version
Cisco Nexus Operating System (NX-OS) Software
TAC support: http://www.cisco.com/tac
Documents: http://www.cisco.com/en/US/products/ps9372/tsd_products_support_series_home.html
Copyright (c) 2002-2012, Cisco Systems, Inc. All rights reserved.
The copyrights to certain works contained herein are owned by
other third parties and are used and distributed under license.
Some parts of this software are covered under the GNU Public
License. A copy of the license is available at
http://www.gnu.org/licenses/gpl.html.
Software
BIOS: version 3.5.0
loader: version N/A
kickstart: version 5.1(3)N1(1a)
system: version 5.1(3)N1(1a)
power-seq: Module 1: version v1.0
Module 3: version v2.0
uC: version v1.2.0.1
SFP uC: Module 1: v1.0.0.0
BIOS compile time: 02/03/2011
kickstart image file is: bootflash:///n5000-uk9-kickstart.5.1.3.N1.1a.bin
kickstart compile time: 2/7/2012 23:00:00 [02/08/2012 07:49:30]
system image file is: bootflash:///n5000-uk9.5.1.3.N1.1a.bin
system compile time: 2/7/2012 23:00:00 [02/08/2012 12:44:33]
Hardware
cisco Nexus5548 Chassis ("O2 32X10GE/Modular Universal Platform Supervisor")
Intel(R) Xeon(R) CPU with 8263880 kB of memory.
Processor Board ID FOC16256KUW
Device name: switch
bootflash: 2007040 kB
Kernel uptime is 15 day(s), 1 hour(s), 59 minute(s), 8 second(s)
Last reset at 299763 usecs after Wed Feb 18 05:48:07 2009
Reason: Reset Requested by CLI command reload
System version: 5.1(3)N1(1a)
Service:
plugin
Core Plugin, Ethernet Plugin, Fc Plugin
创建VSAN
在Cisco Nexus5548上创建VSAN的步骤如下。
- 激活FCoE。
switch# conf t Enter configuration commands, one per line. End with CNTL/Z. switch(config)# feature fcoe fcoe fcoe-npv switch(config)# feature fcoe switch(config)# show fcoe Global FCF details FCF-MAC is 54:7f:ee:b4:f8:20 FC-MAP is 0e:fc:00 FCF Priority is 128 FKA Advertisement period for FCF is 8 seconds - 创建VSAN。标红的部分为创建命令,同时使用“show vsan”命令查看是否创建成功。
switch(config)# show vsan vsan 1 information name:VSAN0001 state:active interoperability mode:default loadbalancing:src-id/dst-id/oxid operational state:down vsan 100 information name:VSAN0100 state:active interoperability mode:default loadbalancing:src-id/dst-id/oxid operational state:up vsan 4079:evfp_isolated_vsan vsan 4094:isolated_vsan switch(config)# vsan database switch(config-vsan-db)# vsan 200 switch(config-vsan-db)# exit switch(config)# show vsan vsan 1 information name:VSAN0001 state:active interoperability mode:default loadbalancing:src-id/dst-id/oxid operational state:down vsan 100 information name:VSAN0100 state:active interoperability mode:default loadbalancing:src-id/dst-id/oxid operational state:up vsan 200 information name:VSAN0200 state:active interoperability mode:default loadbalancing:src-id/dst-id/oxid operational state:down vsan 4079:evfp_isolated_vsan vsan 4094:isolated_vsan
创建VLAN
在Cisco Nexus5548上创建VLAN的步骤如下。
- 查看现有的VLAN
switch(config)# show vlan VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------- 1 default active Eth1/1, Eth1/2, Eth1/4, Eth1/5 Eth1/6, Eth1/7, Eth1/8, Eth1/15 Eth1/21, Eth1/22, Eth1/23 Eth1/24, Eth1/25, Eth1/26 Eth1/27, Eth1/28 100 VLAN0100 active Eth1/1, Eth1/2, Eth1/3, Eth1/4 Eth1/5, Eth1/6, Eth1/7, Eth1/8 Eth1/9, Eth1/10, Eth1/11 Eth1/12, Eth1/13, Eth1/14 Eth1/15, Eth1/16, Eth1/17 Eth1/18, Eth1/19, Eth1/20 VLAN Type Vlan-mode ---- ----- ---------- 1 enet CE 100 enet CE Remote SPAN VLANs ------------------------------------------------------------------------------- Primary Secondary Type Ports ------- --------- --------------- ------------------------------------------- - 创建VLAN以及查看创建是否成功。
switch(config)# vlan 200 switch(config-vlan)# show vlan VLAN Name Status Ports ---- -------------------------------- --------- ------------------------------- 1 default active Eth1/1, Eth1/2, Eth1/4, Eth1/5 Eth1/6, Eth1/7, Eth1/8, Eth1/15 Eth1/21, Eth1/22, Eth1/23 Eth1/24, Eth1/25, Eth1/26 Eth1/27, Eth1/28 100 VLAN0100 active Eth1/1, Eth1/2, Eth1/3, Eth1/4 Eth1/5, Eth1/6, Eth1/7, Eth1/8 Eth1/9, Eth1/10, Eth1/11 Eth1/12, Eth1/13, Eth1/14 Eth1/15, Eth1/16, Eth1/17 Eth1/18, Eth1/19, Eth1/20 200 VLAN0200 active Eth1/1, Eth1/2, Eth1/4, Eth1/5 Eth1/6, Eth1/7, Eth1/8, Eth1/15 VLAN Type Vlan-mode ---- ----- ---------- 1 enet CE 100 enet CE 200 enet CE Remote SPAN VLANs ------------------------------------------------------------------------------- Primary Secondary Type Ports ------- --------- --------------- -------------------------------------------
配置端口并加入VLAN。
在Cisco Nexus5548上完成该步骤的操作如下。
- 配置端口的运行模式,并且加入VLAN。
switch (config)# interface ethernet 1/1 switch (config-if)# switchport mode trunk switch (config-if)# spanning-tree port type edge trunk
- 创建VFC,并与物理端口绑定。
switch (config)# interface vfc 1 switch (config-if)# bind interface ethernet 1/1 switch (config-if)# no shutdown
- 将创建的VFC加入VSAN中。
NEXUS(config)# vsan database NEXUS(config-vsan-db)# vsan 2 interface vfc 1
创建Zone并加入端口
在Cisco Nexus5548上可以按照下面的步骤进行操作。
- 查看在交换机上连接好了的FCoE设备的WWN。
switch# show flogi database -------------------------------------------------------------------------------- INTERFACE VSAN FCID PORT NAME NODE NAME -------------------------------------------------------------------------------- vfc1 100 0x2b0002 21:00:00:0e:1e:0a:6b:ab 20:00:00:0e:1e:0a:6b:ab vfc4 100 0x2b0008 21:00:00:c0:dd:13:e2:a1 20:00:00:c0:dd:13:e2:a1 [lzh1] vfc5 100 0x2b0007 20:00:00:07:43:ab:ce:07 10:00:00:07:43:ab:ce:07 vfc6 100 0x2b0009 21:00:00:c0:dd:13:e2:a3 20:00:00:c0:dd:13:e2:a3 [lzh2] Total number of flogi = 4. - 为设备在交换机上注册一个设备名称。在后面的划zone等操作中就可以直接用设备名来代替WWN了。
switch(config)# device-alias database switch(config-device-alias-db)# device-alias name test1 pwwn 20:00:00:0e:1e:0a:6b:ab switch(config-device-alias-db)# device-alias name test2 pwwn 10:00:00:07:43:ab:ce:07 switch(config-device-alias-db)# device-alias commit switch(config-device-alias-db)# show device-alias database device-alias name lzh1 pwwn 21:00:00:c0:dd:13:e2:a1 device-alias name lzh2 pwwn 21:00:00:c0:dd:13:e2:a3 device-alias name lzh3 pwwn 20:00:00:07:43:ab:cd:ef device-alias name lzh4 pwwn 20:00:00:07:43:ab:cd:f7 device-alias name test1 pwwn 20:00:00:0e:1e:0a:6b:ab device-alias name test2 pwwn 10:00:00:07:43:ab:ce:07
- 将设备名加入Zone中。
switch# show zone zone name zonexzh vsan 100 pwwn 21:00:00:0e:1e:0a:6b:ab pwwn 00:00:00:07:43:ab:cd:f7 pwwn 20:00:00:07:43:ab:ce:07 zone name zonexzh02 vsan 100 pwwn 21:00:00:0e:1e:0a:6b:af zone name zonexz vsan 100 pwwn 21:00:00:c0:dd:12:06:03 pwwn 20:00:00:07:43:ab:cd:ff zone name lzhzone1 vsan 100 pwwn 21:00:00:c0:dd:13:e2:a1 [lzh1] pwwn 20:00:00:07:43:ab:cd:ef [lzh3] zone name lzhzone2 vsan 100 pwwn 21:00:00:c0:dd:13:e2:a3 [lzh2] pwwn 20:00:00:07:43:ab:cd:f7 [lzh4] zone name lzhzone3 vsan 100 switch(config)# zone name lzhzone3 vsan 100switch(config-zone)# member device-alias test1 switch(config-zone)# member device-alias test2 switch(config-zone)# show zone zone name zonexzh vsan 100 pwwn 21:00:00:0e:1e:0a:6b:ab pwwn 00:00:00:07:43:ab:cd:f7 pwwn 20:00:00:07:43:ab:ce:07 zone name zonexzh02 vsan 100 pwwn 21:00:00:0e:1e:0a:6b:af zone name zonexz vsan 100 pwwn 21:00:00:c0:dd:12:06:03 pwwn 20:00:00:07:43:ab:cd:ff zone name lzhzone1 vsan 100 pwwn 21:00:00:c0:dd:13:e2:a1 [lzh1] pwwn 20:00:00:07:43:ab:cd:ef [lzh3] zone name lzhzone2 vsan 100 pwwn 21:00:00:c0:dd:13:e2:a3 [lzh2] pwwn 20:00:00:07:43:ab:cd:f7 [lzh4] zone name lzhzone3 vsan 100 pwwn 20:00:00:0e:1e:0a:6b:ab [test1] pwwn 10:00:00:07:43:ab:ce:07 [test2]
创建Zoneset并加入Zone
在Cisco Nexus5548上的操作步骤描述如下。
- 在VSAN下创建Zoneset。
switch(config)# zoneset name lzhzoneset5 vsan 100 switch(config-zoneset)# show zoneset zoneset name zoneset100 vsan 100 zone name zonexzh vsan 100 pwwn 21:00:00:0e:1e:0a:6b:ab pwwn 00:00:00:07:43:ab:cd:f7 pwwn 20:00:00:07:43:ab:ce:07 zone name zonexzh02 vsan 100 pwwn 21:00:00:0e:1e:0a:6b:af zone name zonexz vsan 100 pwwn 21:00:00:c0:dd:12:06:03 pwwn 20:00:00:07:43:ab:cd:ff zone name lzhzone1 vsan 100 pwwn 21:00:00:c0:dd:13:e2:a1 [lzh1] pwwn 20:00:00:07:43:ab:cd:ef [lzh3] zone name lzhzone2 vsan 100 pwwn 21:00:00:c0:dd:13:e2:a3 [lzh2] pwwn 20:00:00:07:43:ab:cd:f7 [lzh4] zoneset name lzhzoneset5 vsan 100 - 将创建好的Zoneset中加入Zone。
switch(config-zoneset)# member lzhzone3 switch(config-zoneset)# show zoneset zoneset name zoneset100 vsan 100 zone name zonexzh vsan 100 pwwn 21:00:00:0e:1e:0a:6b:ab pwwn 00:00:00:07:43:ab:cd:f7 pwwn 20:00:00:07:43:ab:ce:07 zone name zonexzh02 vsan 100 pwwn 21:00:00:0e:1e:0a:6b:af zone name zonexz vsan 100 pwwn 21:00:00:c0:dd:12:06:03 pwwn 20:00:00:07:43:ab:cd:ff zone name lzhzone1 vsan 100 pwwn 21:00:00:c0:dd:13:e2:a1 [lzh1] pwwn 20:00:00:07:43:ab:cd:ef [lzh3] zone name lzhzone2 vsan 100 pwwn 21:00:00:c0:dd:13:e2:a3 [lzh2] pwwn 20:00:00:07:43:ab:cd:f7 [lzh4] zoneset name lzhzoneset5 vsan 100 zone name lzhzone3 vsan 100 pwwn 20:00:00:0e:1e:0a:6b:ab [test1]pwwn 10:00:00:07:43:ab:ce:07 [test2]\ - 激活Zoneset。
switch (config)# zoneset activate name zoneset_1 vsan 2 zoneset activation initiated. check zone status
![]()
需要说明的是一般,一台FCoE交换机只有一个Zoneset能够被激活,所以最好把所有的Zone都放在一个Zoneset中,这样防止对其他业务的影响。
上一页
