らくがきちょう

なんとなく ~所属組織/団体とは無関係であり、個人の見解です~

Cisco ACI でよく設定する Interface Policies (2020/11/25 版)

以前に下記のメモを書きました。

大して代わり映えしませんが、メモ時点で最新の ACI 5.1(1h) 用の「良く使う Interface Policies」を定義した XML ファイルを更新しておきます。

XML

XML は以下の通りです。 uni/ に対して Post します。

<?xml version="1.0" encoding="UTF-8"?>
<infraInfra dn="uni/infra" nameAlias="" ownerKey="" ownerTag="">
    <fabricHIfPol annotation="" autoNeg="on" descr="" dfeDelayMs="0" dn="uni/infra/hintfpol-100M_Auto" fecMode="inherit" linkDebounce="100" name="100M_Auto" nameAlias="" ownerKey="" ownerTag="" speed="100M" userdom=":all:"/>
    <fabricHIfPol annotation="" autoNeg="on" descr="" dfeDelayMs="0" dn="uni/infra/hintfpol-1G_Auto" fecMode="inherit" linkDebounce="100" name="1G_Auto" nameAlias="" ownerKey="" ownerTag="" speed="1G" userdom=":all:"/>
    <fabricHIfPol annotation="" autoNeg="on" descr="" dfeDelayMs="0" dn="uni/infra/hintfpol-10G_Auto" fecMode="inherit" linkDebounce="100" name="10G_Auto" nameAlias="" ownerKey="" ownerTag="" speed="10G" userdom=":all:"/>
    <fabricHIfPol annotation="" autoNeg="on" descr="" dfeDelayMs="0" dn="uni/infra/hintfpol-100G_Auto" fecMode="inherit" linkDebounce="100" name="100G_Auto" nameAlias="" ownerKey="" ownerTag="" speed="100G" userdom=":all:"/>
    <cdpIfPol adminSt="disabled" annotation="" descr="" dn="uni/infra/cdpIfP-CDP_Disable" name="CDP_Disable" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    <cdpIfPol adminSt="enabled" annotation="" descr="" dn="uni/infra/cdpIfP-CDP_Enable" name="CDP_Enable" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    <lldpIfPol adminRxSt="disabled" adminTxSt="disabled" annotation="" descr="" dn="uni/infra/lldpIfP-LLDP_Disable" name="LLDP_Disable" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    <lldpIfPol adminRxSt="enabled" adminTxSt="enabled" annotation="" descr="" dn="uni/infra/lldpIfP-LLDP_Enable" name="LLDP_Enable" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>

    <lacpLagPol annotation="" ctrl="fast-sel-hot-stdby,graceful-conv,susp-individual,symmetric-hash" descr="" dn="uni/infra/lacplagp-LACP_Active" maxLinks="16" minLinks="1" mode="active" name="LACP_Active" nameAlias="" ownerKey="" ownerTag="" userdom=":all:">
        <l2LoadBalancePol annotation="" descr="" hashFields="dst-ip" name="" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    </lacpLagPol>
    <lacpLagPol annotation="" ctrl="fast-sel-hot-stdby,graceful-conv,susp-individual,symmetric-hash" descr="" dn="uni/infra/lacplagp-LACP_On" maxLinks="16" minLinks="1" mode="off" name="LACP_On" nameAlias="" ownerKey="" ownerTag="" userdom=":all:">
        <l2LoadBalancePol annotation="" descr="" hashFields="dst-ip" name="" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    </lacpLagPol>
    <lacpLagPol annotation="" ctrl="fast-sel-hot-stdby,graceful-conv,susp-individual,symmetric-hash" descr="" dn="uni/infra/lacplagp-LACP_Passive" maxLinks="16" minLinks="1" mode="passive" name="LACP_Passive" nameAlias="" ownerKey="" ownerTag="" userdom=":all:">
        <l2LoadBalancePol annotation="" descr="" hashFields="dst-ip" name="" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    </lacpLagPol>
    <lacpLagPol annotation="" ctrl="fast-sel-hot-stdby,graceful-conv,susp-individual" descr="" dn="uni/infra/lacplagp-MAC_Pinning" maxLinks="16" minLinks="1" mode="mac-pin" name="MAC_Pinning" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    <lacpLagPol annotation="" ctrl="fast-sel-hot-stdby,graceful-conv,susp-individual" descr="" dn="uni/infra/lacplagp-MAC_Pinning_PhysNICLoad" maxLinks="16" minLinks="1" mode="mac-pin-nicload" name="MAC_Pinning_PhysNICLoad" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    <lacpIfPol annotation="" descr="" dn="uni/infra/lacpifp-PC_Fast" name="PC_Fast" nameAlias="" ownerKey="" ownerTag="" prio="32768" txRate="fast" userdom=":all:"/>
    <lacpIfPol annotation="" descr="" dn="uni/infra/lacpifp-PC_Normal" name="PC_Normal" nameAlias="" ownerKey="" ownerTag="" prio="32768" txRate="normal" userdom=":all:"/>
    <stpIfPol annotation="" ctrl="bpdu-filter" descr="" dn="uni/infra/ifPol-BPDU_Filter" name="BPDU_Filter" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    <stpIfPol annotation="" ctrl="bpdu-guard" descr="" dn="uni/infra/ifPol-BPDU_Guard" name="BPDU_Guard" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    <stpIfPol annotation="" ctrl="" descr="" dn="uni/infra/ifPol-BPDU_Transparent" name="BPDU_Transparent" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    <mcpIfPol adminSt="disabled" annotation="" descr="" dn="uni/infra/mcpIfP-MCP_Disable" name="MCP_Disable" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    <mcpIfPol adminSt="enabled" annotation="" descr="" dn="uni/infra/mcpIfP-MCP_Enable" name="MCP_Enable" nameAlias="" ownerKey="" ownerTag="" userdom=":all:"/>
    <stormctrlIfPol annotation="" bcBurstPps="unspecified" bcBurstRate="100.000000" bcRate="100.000000" bcRatePps="unspecified" burstPps="unspecified" burstRate="1.000000" descr="" dn="uni/infra/stormctrlifp-001.0pct_Drop" isUcMcBcStormPktCfgValid="Invalid" mcBurstPps="unspecified" mcBurstRate="100.000000" mcRate="100.000000" mcRatePps="unspecified" name="001.0pct_Drop" nameAlias="" ownerKey="" ownerTag="" rate="1.000000" ratePps="unspecified" stormCtrlAction="drop" stormCtrlSoakInstCount="3" type="all" userdom=":all:" uucBurstPps="unspecified" uucBurstRate="100.000000" uucRate="100.000000" uucRatePps="unspecified"/>
    <stormctrlIfPol annotation="" bcBurstPps="unspecified" bcBurstRate="100.000000" bcRate="100.000000" bcRatePps="unspecified" burstPps="unspecified" burstRate="1.000000" descr="" dn="uni/infra/stormctrlifp-001.0pct_Shutdown" isUcMcBcStormPktCfgValid="Invalid" mcBurstPps="unspecified" mcBurstRate="100.000000" mcRate="100.000000" mcRatePps="unspecified" name="001.0pct_Shutdown" nameAlias="" ownerKey="" ownerTag="" rate="1.000000" ratePps="unspecified" stormCtrlAction="shutdown" stormCtrlSoakInstCount="3" type="all" userdom=":all:" uucBurstPps="unspecified" uucBurstRate="100.000000" uucRate="100.000000" uucRatePps="unspecified"/>
    <stormctrlIfPol annotation="" bcBurstPps="unspecified" bcBurstRate="100.000000" bcRate="100.000000" bcRatePps="unspecified" burstPps="unspecified" burstRate="10.000000" descr="" dn="uni/infra/stormctrlifp-010.0pct_Drop" isUcMcBcStormPktCfgValid="Invalid" mcBurstPps="unspecified" mcBurstRate="100.000000" mcRate="100.000000" mcRatePps="unspecified" name="010.0pct_Drop" nameAlias="" ownerKey="" ownerTag="" rate="10.000000" ratePps="unspecified" stormCtrlAction="drop" stormCtrlSoakInstCount="3" type="all" userdom=":all:" uucBurstPps="unspecified" uucBurstRate="100.000000" uucRate="100.000000" uucRatePps="unspecified"/>
    <stormctrlIfPol annotation="" bcBurstPps="unspecified" bcBurstRate="100.000000" bcRate="100.000000" bcRatePps="unspecified" burstPps="unspecified" burstRate="10.000000" descr="" dn="uni/infra/stormctrlifp-010.0pct_Shutdown" isUcMcBcStormPktCfgValid="Invalid" mcBurstPps="unspecified" mcBurstRate="100.000000" mcRate="100.000000" mcRatePps="unspecified" name="010.0pct_Shutdown" nameAlias="" ownerKey="" ownerTag="" rate="10.000000" ratePps="unspecified" stormCtrlAction="shutdown" stormCtrlSoakInstCount="3" type="all" userdom=":all:" uucBurstPps="unspecified" uucBurstRate="100.000000" uucRate="100.000000" uucRatePps="unspecified"/>
    <l2IfPol annotation="" descr="" dn="uni/infra/l2IfP-L2_Global" name="L2_Global" nameAlias="" ownerKey="" ownerTag="" qinq="disabled" userdom=":all:" vepa="disabled" vlanScope="global"/>
    <l2IfPol annotation="" descr="" dn="uni/infra/l2IfP-L2_Local" name="L2_Local" nameAlias="" ownerKey="" ownerTag="" qinq="disabled" userdom=":all:" vepa="disabled" vlanScope="portlocal"/>
    <l2IfPol annotation="" descr="" dn="uni/infra/l2IfP-L2_QinQ_Edge" name="L2_QinQ_Edge" nameAlias="" ownerKey="" ownerTag="" qinq="edgePort" userdom=":all:" vepa="disabled" vlanScope="global"/>
</infraInfra>

Link Level

Name 1G_Auto 10G_Auto 100G_Auto 100M_Auto
Auto Negotiation on on on on
Spped 1Gbps 10Gbps 100Gbps 100Mbps
Port bring-up delay (milliseconds) 0 0 0 0
Link Debounce Interval (Msec) 100 100 100 100
Forwarding Error Correction inherit inherit inherit inherit

CDP Interface

Name CDP_Disable CDP_Enable
Admin State Disabled Enabled

LLDP Interface

Name LLDP_Disable LLDP_Enable
Receive State Disabled Enabled
Transmit State Disabled Enabled

Port Channel

Name LACP_Active LACP_On LACP_Passive MAC_Pinning MAC_Pinning_PhysNICLoad
Mode LACP Active Static Channel - Mode On LACP Passive MAC Pinning MAC Pinning-Physical-NIC-Load
Fast Select Hot Standby Ports N/A N/A
Graceful Convergence N/A N/A
Suspend Individual Port N/A N/A
Synmetric hashinhg N/A N/A
Minimum Number of Links 1 1 1 1 1
Maximum Number of Links 16 16 16 16 16
Load Balance Hashing Destination Ip Destination Ip Destination Ip N/A N/A

Port Channel Member

Name PC_Fast PC_Normal
Priority 32768 32768
Transmit Rate Fast Normal

Spanning Tree Interface

Name BPDU_Filter BPDU_Guard BPDU_Transparent
BPDU filter enabled - -
BPDU Guard enabled - -

Storm Control

Name 001.0pct_Drop 001.0pct_Shutdown 010.0pct_Drop 010.0pct_Shutdown
Configure Storm Control All Types All Types All Types All Types
Specify Policy In Percentage Percentage Percentage Percentage
Rate (percentage of bandwidth) 1.000000 1.000000 10.000000 10.000000
Max Burst Rate (percentage of bandwidth) 1.000000 1.000000 10.000000 10.000000
Storm Control Action drop shutdown drop shutdown

MCP Interface

Name MCP_Disable MCP_Enable
Admin State Disabled Enabled

L2 Interface

Name L2_Global L2_Local L2_QinQ_Edge
QinQ disabled disabled edgePort
Reflective Relay (802.1Qbg) disabled disabled disabled
VLAN Scope Global scope Local scope N/A