Example Scenario
This section describes a typical LACP individual port feature configuration.
Port-channel 100 is a tagged member of VLAN 2 that is configured with MTU 5000 and xSTP bpduguard features. VLAN 2 is associated to virtual-network 2000.
Consider a scenario where the port channel 100 contains two member-ports: ethernet1/1/1 and ethernet1/1/2.
Consider that the port ethernet1/1/2 has transitioned to a LACP individual port. All restrictions corresponding to the normal port member configurations are also applicable to the LACP individual ports.
Following list displays the show command output after the member port transitions to a LACP individual port:
- show port-channel summary
OS10# show port-channel summary Flags: D - Down I - member up but inactive P - member up and active U - Up (port-channel) F - Fallback Activated IND - LACP Individual -------------------------------------------------------------------------------- Group Port-Channel Type Protocol Member Ports -------------------------------------------------------------------------------- 1 port-channel1 (D) Eth DYNAMIC 100 port-channel100(D) Eth DYNAMIC 1/1/1(D) 1/1/2(IND) - show vlan
OS10# show vlan Codes: * - Default VLAN, M - Management VLAN, R - Remote Port Mirroring VLANs, @-Attached to Virtual Network, P - Primary, C - Community, I - Isolated Q: A - Access (Untagged), T - Tagged NUM Status Description Q Ports * 1 Active A Eth1/1/1-1/1/4,1/1/6-1/1/51, 1/1/53-1/1/54 A Po1,100 2 Active T Po100, Eth1/1/2 - show interface ethernet
OS10# show interface ethernet 1/1/2 Ethernet 1/1/2 is up, line protocol is up Hardware is Eth, address is 14:18:77:09:d2:81 Current address is 14:18:77:09:d2:81 Pluggable media present, RJ45 type is 10GBASE-T-RJ45 Wavelength is 0 Interface index is 17 Internet address is not set Mode of IPv4 Address Assignment: not set Interface IPv6 oper status: Disabled MTU 5000 bytes, IP MTU 1500 bytes LineSpeed 0, Auto-Negotiation on Flowcontrol rx on tx off ARP type: ARPA, ARP Timeout: 60 Last clearing of "show interface" counters: 10:48:09 Queuing strategy: fifo Input statistics: 0 packets, 0 octets 0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 0 Multicasts, 0 Broadcasts, 0 Unicasts 0 runts, 0 giants, 0 throttles 0 CRC, 0 overrun, 0 discarded Output statistics: 0 packets, 0 octets 0 64-byte pkts, 0 over 64-byte pkts, 0 over 127-byte pkts 0 over 255-byte pkts, 0 over 511-byte pkts, 0 over 1023-byte pkts 0 Multicasts, 0 Broadcasts, 0 Unicasts 0 throttles, 0 discarded, 0 Collisions, wred drops Rate Info(interval 30 seconds): Input 0 Mbits/sec, 0 packets/sec, 0% of line rate Output 0 Mbits/sec, 0 packets/sec, 0% of line rate Time since last interface status change: 10:48:10
- show spanning tree interface
OS10# show spanning-tree interface ethernet 1/1/2 ethernet1/1/2 of vlan 1 is Disabled Blocking Edge port: No (default) Link type: point-to-point (auto) Boundary: No, Bpdu-filter: Disable, Bpdu-Guard: Enable, Shutdown-on-Bpdu-Guard-violation: Yes Root-Guard: Disable, Loop-Guard: Disable Bpdus (MRecords) Sent: 0, Received: 0 Interface Designated Name PortID Prio Cost Sts Cost Bridge ID PortID ------------------------------------------------------------------------------------------------------- ethernet1/1/2 128.408 128 200000000 BLK 0 32769 0000.0000. 0000 128.408 - show mac address-table
OS10# show mac address-table Codes: pv <vlan-id> - private vlan where the mac is originally learnt VlanId Mac Address Type Interface 1 14:18:77:09:d2:b9 dynamic ethernet1/1/2 1 14:18:77:09:d3:49 dynamic port-channel100
- show virtual-network
OS10# show virtual-network Codes: DP - MAC-learn Dataplane, CP - MAC-learn Controlplane, UUD - Unknown-Unicast-Drop Un-tagged VLAN: 4 Virtual Network: 2000 Members: VLAN 2: port-channel100, ethernet1/1/2 VxLAN Virtual Network Identifier: 200 Source Interface: loopback0(2.2.2.2) Remote-VTEPs (flood-list): 33.33.33.33(CP),77.77.77.77(CP) - show virtual-network interface
OS10# show virtual-network interface ethernet 1/1/2 Interface Vlan Virtual Network ------------------------------------------------------- ethernet1/1/2 2 2000 OS10# show virtual-network interface port-channel 100 Interface Vlan Virtual Network ------------------------------------------------------- port-channel100 2 2000
- show virtual-network interface <> counters
OS10# show virtual-network interface ethernet 1/1/2 counters Virtual-Network Input (Packets/Bytes) Output (Packets/Bytes) ----------------------------------------------------------------------------- 2000 0/0 0/0
- show virtual-network vlan
OS10# show virtual-network vlan Vlan Virtual Network Interface --------------------------------------------------------------------- 2 2000 port-channel100, ethernet1/1/2
These show commands information corresponding to the VLAN (VLAN 2), MTU (5000), xSTP bpdugaurd, and VXLAN properties are copied from the parent port channel 100 to the LACP individual port eth1/1/2.
PVLAN and port-security configurations corresponding to the port channel are not inherited on the LACP individual ports.
When a port-channel member become an individual port, it is treated as a separate port on all other modules. Hence, the MAC address learned on the individual port is independent of the MAC address learned on the port channel.
NOTE: The operational-status of the LACP individual ports do not effect the operational-status of the parent port channel.
VLT Use case
In case of VLT, you must configure the LACP individual feature at both the VLT peers. In case of VLT mismatch scenario, the feature starts to work as expected only after you correct the mismatch configuration.
The following list displays the show command outputs and VLT mismatch outputs:
- show port-channel summary
Flags: D - Down I - member up but inactive P - member up and active U - Up (port-channel) F - Fallback Activated IND - LACP Individual -------------------------------------------------------------------------------- Group Port-Channel Type Protocol Member Ports -------------------------------------------------------------------------------- 1 port-channel1 (D) Eth DYNAMIC 1/1/7(IND) 1/1/16(IND) 1/1/17(IND) 1000 port-channel1000 (U) Eth STATIC 1/1/4(P) 1/1/6(P) - show vlt all vlt-port-detail
vlt-port-channel ID : 10 VLT Unit ID Port-Channel Status Configured ports Active ports ------------------------------------------------------------------------------- * 1 port-channel1 down 3 0
Still the individual ports are a part of the port channel in north bound configurations. - show port-channel summary
Flags: D - Down I - member up but inactive P - member up and active U - Up (port-channel) F - Fallback Activated IND - LACP Individual -------------------------------------------------------------------------------- Group Port-Channel Type Protocol Member Ports -------------------------------------------------------------------------------- 1 port-channel1 (D) Eth DYNAMIC 1/1/7(IND) 1/1/16 (IND) 1/1/17(IND) 1000 port-channel1000 (U) Eth STATIC 1/1/4(P) 1/1/6(P) - show vlt all vlt-port-detail
vlt-port-channel ID : 10 VLT Unit ID Port-Channel Status Configured ports Active ports ------------------------------------------------------------------------------- * 1 port-channel1 down 3 0 -
VLT mismatch - Case 1 - When LACP individual feature is enabled in the vlt port channel in both vlt nodes, there is no mismatch for this feature configuration.
show vlt 1 mismatch lacp-individuallacp-individual: No mismatch
-
VLT mismatch - Case 2 - When LACP individual feature is enabled in one VLT node (peer1), but not in another VLT node (peer2), then it is considered as VLT mismatch for this feature configuration.
show vlt 1 mismatch lacp-individualport-channel id: 1 VLT Unit ID lacp-individual ------------------------------------- 1 enable * 2 disable port-channel id: 2 VLT Unit ID lacp-individual ------------------------------------- 1 enable * 2 disable
Loop handling in deployment scenarios
This section describes loop handling scenarios.
LACP individual port-channel connects to the ESXi host
In general, VMware standard switch (VSS) and virtual distributed switch (VDS) do not support spanning tree protocol (STP). Hence, it is not possible for SmartFabric OS10 switches to receive xSTP BPDUs on ESXi host-facing ports.
By default, an ESXi host does not perform switching or bridging functions; however, it is possible (in rare scenarios) for a VM to perform the bridging or switching functions.
If no switching or bridging functions are enabled on the ESXi hosts, Dell Technologies recommends enabling the port-fast and BPDU-guard features.
LACP individual port-channel connects to non-ESXi nodes
For deployments with VLANs - If the peer node supports bridging functionality and xSTP, Dell Technologies recommends enabling STP to aviod loops on the LACP individual port-channel connecting that node.
For deployments with VXLANs - As STP is not supported on VXLAN networks, Dell Technologies recommends ensuring that there are no loops in the topology.