I’m trying to learn more about Ciscos datacenter products and obviously NX-OS is a
big part of that. I’ll do some blog posts to introduce anyone not familiar with
NX-OS to it and that will help me with the learning as well.

One important thing to know about NX-OS is that features are selectively enabled.
This means that if you are not running OSPF then there is no need to have that
process running. We can check what features are running.

As you can see NX-OS has some nice features like grep which is a nice addition
to regular IOS. There are also additional things that can be done like sort, count
and count unique instances.

By default Telnet is not enabled which is good. It’s more secure to use SSH.
If we want to add it we can do it with the feature command.

In regular IOS we limit the number of VTY sessions with the line vty command.
In NX-OS the session-limit command is used instead.

SSH is enabled by default. A crypto key should already be generated or you can generate
a new one.

With the show users command we can see from which TTYs the users are logged in.

When logging in to a NX-OS device the user goes straight to exec mode. There
is no need to enable. There are 4 different types of accounts available in NX-OS.
These are:

  • network-admin—Complete read-and-write access to the entire Cisco NX-OS device (only available in the default VDC)
  • network-operator—Complete read access to the entire Cisco NX-OS device (only available in the default VDC)
  • vdc-admin—Read-and-write access limited to a VDC
  • vdc-operator—Read access limited to a VDC

This makes it easy to create users that should have only read access.

SNMP should be enabled for network management. SNMP version 2C or 3 can
be enabled.

SNMPwalk1

For more secure SNMP setup version 3 should be used. SNMPv3 can be setup to use
authentication or authentication and encryption. By default the users we create
will be created as SNMP users also which makes the configuration simple.

New users can be created as well.

The password must be at least 8 characters. To enforce all SNMPv3 PDUs to be
authenticated and encrypted the following command is used.

Now to see that it works.

SNMPwalk2

And there you have it. A basic look at the management setup of NX-OS. More
posts will follow.

Introduction to NX-OS – Basic system setup
Tagged on:                             

4 thoughts on “Introduction to NX-OS – Basic system setup

Leave a Reply

Your email address will not be published. Required fields are marked *

%d bloggers like this: