• Blog

 
 

7500N Clearance Requirements and Footprint

ContentsIntroduction7500R/R2 Line Card ClearanceMax width (when ejector open and pull out line card) 7500R/R27500R3 Line Card ClearanceMax width (when ejector open and pull out line card) 7500R3References Introduction When install a 7500N chassis in a rack that provides adequate clearance for removing front and rear components. Arista 7500N Quick Start Guide states the Clearance requirements and footprint for switches.   7500R/R2 Line Card Clearance Since Quick Start Guide mentioned clearance is only for front and rear side, we added more clearance information here in the left and right space for 7500R/R2 Line card as below: Max width (when ejector open...
Continue reading →

VXLAN Configuration check using “show vxlan config-sanity”

ContentsIntroductionCLI DetailsVerificationLocal VTEP Configuration CheckRemote VTEP Configuration CheckPlatform Dependent CheckCVX Configuration CheckMLAG Configuration Check  Introduction Starting with EOS 4.22.0F, the show vxlan config-sanity command can be used to highlight various common errors in a VxLAN setup. This command is platform-independent. CLI Details switch# show vxlan config-sanity [ options ] VXLAN Config Sanity CLI has the following options. # show vxlan config-sanity (displays details for only FAIL and WARN checks) # show vxlan config-sanity brief (displays a brief output for FAIL and WARN checks) # show vxlan config-sanity detail (displays details for all checks) RESULT column may have one of these...
Continue reading →

High CPU on FHR or RP due to PIM

ContentsIntroductionOverviewBackgroundTroubleshooting Introduction High CPU due to PIM processes is not always a bug and may be caused by either a misconfiguration or a routing issue.  For the purposes of this document we will focus primarily on network misconfiguration. Overview Network wide choppy video, music on hold streams or loud speaker issues are commonly caused by multicast problems in the network.  Should the issue be network wide and not isolated to one area of the network, the next place to start looking is high CPU on the First Hop Routers (FHR) and/or the Rendezvous Point (RP).  When the CPU process is...
Continue reading →

GRE tunnel configuration – DMF/BMF

DMF support L2-GRE tunneling, to transmit/receive encapsulated monitoring traffic over a network. This feature can be used to extend a DMF deployment across multiple data centers or branch offices over networks connected by Layer 3 networks. This supports centralization or distribution of tools and taps/spans across multiple locations when they cannot be directly connected.   ContentsScenario 1: Using GRE tunnel as a core interface.Scenario 2: Using GRE tunnel as a delivery interfaceScenario 3: Using GRE tunnel as a filter interface. Scenario 1: Using GRE tunnel as a core interface. For core links, the direction of the tunnel should be bidirectional...
Continue reading →

CVP HA Deployment Guide

ContentsIntroductionScopeIn ScopeOut of ScopeDeployment ModelsCloudVision Virtual ApplianceCloudVision Physical ApplianceHigh AvailabilityClusteringBandwidth and Latency RequirementsInstallation RequirementsSingle-Site DeploymentMulti-Site DeploymentCentralised ClusterDual ClusterCold StandbyWarm StandbyBackup and RestoreDefault Backup ScheduleManual BackupManual RestoreAutomatic Backup ExportStreaming Telemetry to Multiple CVP ClustersShared Key Authentication ExampleCertificate-based Authentication ExampleProvisioning from Multiple ClustersSynchronize the Provisioning Dataset Introduction This document describes high availability deployment scenarios and best practices for Arista CloudVision Portal (CVP). The guide is intended for network architects and engineers who are planning, designing, or implementing an on-premises deployment of CVP. Scope In Scope CVP version 2020.2.x/2020.3.x/2021.1.x On-premises deployment CVP virtual appliance CVP physical appliance Single-site Multi-site Disaster recovery Out of...
Continue reading →

Use cases for CCF vCenter integration

ContentsOverviewSupported CasesUnsupported CasesValidation Overview This article will describe some supported and unsupported scenarios for interface-group creation on Converged Cloud Fabric (CCF) based on NIC teaming and load balancing policy used on the vCenter side.  It is applicable for Converged Cloud Fabric (CCF) deployments using vCenter integration. Following NIC teaming policies are supported on the vCenter side: Routing based on IP hash Source MAC hash Originating virtual port Explicit failover order  Routing based on physical NIC load. The teaming policies will be broadly classified as either IP-hash (Route based on IP hash) or non-IP-hash policies (remaining 4 policies) on the CCF...
Continue reading →

Vxlan Trident L2-Uplink Limitation 113722

If you’ve tried implementing VXLAN on Trident VTEPs with a Layer-2 uplink to remote-vteps, you may have noticed that sometimes packets can’t be successfully forwarded across the VXLAN fabric, or perhaps the latency observed is higher than what’s expected. Alternatively, maybe you never noticed the above symptoms and are here instead because you noticed the following log in your switch: STRATA-6-VXLAN_PORT_TO_NEXTHOP_OVERFLOW. These are the most common observations made when a Trident switch has hit the following limitation, 113722, found in EOS Release Notes: ContentsLimitations and Restrictions in 4.26.1F7300X3, 7320X, 7368, CCS-720XP, CCS-750, DCS-7010, DCS-7050X, DCS-7050X2, DCS-7050X3, DCS-7060X, DCS-7060X2, DCS-7060X4, DCS-7250X,...
Continue reading →

DMF Upgrade procedures 7.x.x+

ContentsDMF Upgrade ProceduresOverviewSwitch/Node upgradesSteps for Upgrading Controllers 7.x.x to 8.x.xCopying Upgrade image to controllerOption 1Option 2Controller upgradeAnalytics and Recorder Nodes DMF Upgrade Procedures Overview This Document will provide the necessary steps to upgrade DMF and its respected nodes individually from 7.x.x onward. These upgrade steps are also present in the DMF deployment guide, starting on chapter 6. https://www.arista.com/en/support/software-download Switch/Node upgrades After the controllers have upgraded, the switches will automatically reboot to upgrade. Service nodes, starting from 7.x.x, will upgrade automatically similarly to fabric switches. Analytics and Recorder nodes need to be upgraded separately, which will be covered later in this...
Continue reading →

DMF Downgrade/ Fresh Install

ContentsDMF Downgrade/ Fresh InstallIDRAC Fresh InstallBooting with Alternate Partition DMF Downgrade/ Fresh Install   Please be advised downgrading of DMF version image using the “upgrade launch” procedure is not supported. There are 2 ways to perform the downgrades. Loading the alternate boot partition which consists of the previous DMF version image or doing a fresh install via IDRAC. IDRAC Fresh install may be used when you don’t have the previous DMF image on the alternate partition. IDRAC Fresh Install Using IDRAC we can perform a fresh install of the ISO on a device. The process is the same for Controller...
Continue reading →

BFD troubleshooting tips

ContentsBFD quick introduction:Troubleshooting BFD commands:Troubleshooting steps:1) BFD goes down because of underlying physical interface going down:2) If bfd packets are blocked by any ACLs3) Check if bfd packets are sent and received properly4) In the above cases, the problem is live. But what if the problem is intermittent and bfd session goes down at unpredictable times. 5) BFD packets are sent properly but the session still goes down. 6) QOS settings: BFD quick introduction: What is BFD? Bidirectional Forwarding Detection(BFD) is a low overhead protocol designed to provide rapid detection of failures in the path between adjacent forwarding engines over any media...
Continue reading →

Setting up AD, NPS, and RADIUS authentication using Windows NPS

ContentsOverviewDefinitionLab SetupConfiguring Windows NPS and ADAdding Users and Groups to ADRADIUS Server configurationConfiguring NPS policiesConfiguring the Arista SwitchSetting up CVP to authenticate users using RADIUS Overview This article will guide through setting up Network Policy Server (NPS) on a Windows Server along with Active Directory Domain Services (AD DS). In addition, this document will address the required parameters to successfully authenticate users to login into Arista switches and CVP using RADIUS. Definition Network Policy Server (NPS) – This feature allows administrators to define policies for Network access authentication, authorization and accounting for wireless, authenticating switch, and remote access dial-up, and...
Continue reading →

Extending EVPN and VXLAN to the Host

ContentsOverviewGoalsTopologySoftware VersionsConfigurationSpine Configuration (route server)Leaf-1a/b ConfigurationHost ConfigurationLinuxFRRTestingTroubleshootingChecking the EVPN peering and routes on the spines/route-serversChecking FRRChecking that FRR has correctly provided the information to the kernelCaveatsAlternative Configuration Options Overview VxLAN provides a highly scalable, standards based approach for constructing L2 overlays on top of routed networks. It is defined in RFC7348, and encapsulates the original host Ethernet frame in a UDP + IP + Ethernet frame. BGP EVPN (RFC 7432 and RFC 8365 for its application to VXLAN) is a standards based control protocol to efficiently discover other endpoints (VTEPs) and distribute reachability information (MAC addresses). This post assumes the reader is...
Continue reading →

Recommended Configurations for Multicast Using Anycast-RP

ContentsOverviewUse CasesTroubleshooting Steps Overview Multicast is a means of sending data from one source to many receivers.  To understand what one to many looks like no further than a TV streaming service and or a paging system which calls only certain phones.  Unlike broadcast which multicast may act like depending on the design, typically multicast packets are not meant for the whole network but to a set of end points for a specific group.  Sending to a group is achieved by sending data to a multicast IP whose range is from 224.0.0.1 to 239.255.255.255.   For data to flow from its...
Continue reading →

Using the CloudVision API with Service Accounts

ContentsDescriptionPlatform CompatibilityHow TocURLPythoncvpracrequestsAdditional Resources Description With the release of CloudVision Portal 2020.3, you have the ability to create Service Accounts. I won’t show you how to create a Service Account, but you can go to this TOI to read about that. This article will show you how to use Service Account Tokens in Python and cURL for API calls. Platform Compatibility This applies to both CVaaS and on-premise installations. How To Using a Service Account Token allows you to bypass the standard authentication process when making API calls. It also allows you to create a local “account” on CloudVision that doesn’t...
Continue reading →

Basic Campus Quality of Service (QoS) design

ContentsIntroductionWhat do we want to achieveDesignConfigurationSSID configurationSwitch configurationTesting the QoS in a congested environmentSwitch shaping configuration Introduction Quality of Service (QoS) is the ability to provide different priorities to different applications, users, or data flows, or to guarantee a certain level of performance to a data flow. QoS processes apply to traffic that flows through Ethernet ports and control planes. These processes can modify data fields (Class of Service (CoS) or Differentiated Services Code Point (DSCP)) or assign data streams to traffic classes for prioritised handling. In this document we will be implementing a basic enterprise QoS model. Consider the...
Continue reading →

Managing Containers on EOS – container-manager

ContentsContainers on EOSContainer-ManagerInitial ConfigurationEnabling container managerAdding a registryDaemon ArgumentsContainer ConfigurationSample ContainerOther container configuration optionsExec CommandsStorage & PersistenceSample RunOther Examples Containers on EOS Container-based deployments make creating cloud portable applications extremely easy. An application can be written on normal build infrastructure, that in turn can be run on a EOS switch or any Linux device that runs docker run time engine. So the same applications that are ran on a server for microservices can be run on switch with Arista EOS. Since Arista extensible operating system is simply linux (CentOS at this time – 2021) we are able to integrate docker...
Continue reading →

Verbose counters on Arista 7130 series

Arista 7130 series running MOS can give very verbose counter output using the CLI or through API. Using CLI, there are two distinct commands to show the counters which are inside the device. To view them, one enters one of the following CLI commands: For the regular (non-verbose) counter view: show interface counters For the verbose counter view: show interface counters verbose [nonzero]   ContentsCounter namingReceive 64b/66b PCS Statistics CountersReceive 8/10b PCS Statistics CountersFCS ErrorAlignment ErrorRuntFalse positivesMAC Counters Counter naming Most counters have both a “line” and “host” side counter. These counters account for the side that is connected to...
Continue reading →

Configure and Troubleshoot DNS on EOS

ContentsWhat is DNS?How to install it on EOS switch?ConfigurationVerificationTroubleshooting What is DNS? The Domain Name Server (DNS) maps FQDN labels to IP addresses and provides addresses for network devices. How to install it on EOS switch? EOS has a pre-installed DNSmasq service that can be used as a lightweight DNS server. The switch can be used in the recursive mode to take the local and external requests and forward them to an upstream DNS server.  Each network requires at least one server to resolve addresses. The configuration file can list a maximum of three server addresses. Configuration Step 1: In...
Continue reading →

Understanding interface breakout modes on Arista switches

Arista switches have the capability to break out QSFP and OSFP interfaces to multiple lanes of smaller speeds. This can be very useful for high density deployments that require a minimal RU footprint by maximizing the ports available on various Arista platforms. With QSFP interfaces, whether it be for 40G or 100G speeds, these are implemented as 4 lanes that can be independently controlled & configured. With 40G interfaces, these interfaces can operate in 4x10G speeds and for 100G interfaces can operate in 4x25G or 2x50G speeds .        As an example, with the Arista 7280CR2A-30 switch which comes with 30...
Continue reading →

Pushing a Python Script to Devices Using CVP (SWIX)

ContentsIntroductionPackaging the Script Into an RPMCreating the SWIX and Installing Locally to TestCreating an Image Bundle in CVP and Assigning to a DeviceVerifying After the SWIX Has Been Installed Introduction In a previous article, I discussed how to push a simple Python script to managed devices with CVP through a configlet. In this article, I will show how to create and install an extension with the same python hello script through an image bundle in CVP. This method is useful if the script is very long and/or has dependencies.   Packaging the Script Into an RPM First, we will need...
Continue reading →

Follow

Get every new post on this blog delivered to your Inbox.

Join other followers: