! show version ! ! Cisco Nexus Operating System (NX-OS) Software ! TAC support: http://www.cisco.com/tac ! Copyright (C) 2002-2019, Cisco and/or its affiliates. ! All rights reserved. ! The copyrights to certain works contained in this software are ! owned by other third parties and used and distributed under their own ! licenses, such as open source. This software is provided "as is," and unless ! otherwise stated, there is no warranty, express or implied, including but not ! limited to warranties of merchantability and fitness for a particular purpose. ! Certain components of this software are licensed under ! the GNU General Public License (GPL) version 2.0 or ! GNU General Public License (GPL) version 3.0 or the GNU ! Lesser General Public License (LGPL) Version 2.1 or ! Lesser General Public License (LGPL) Version 2.0. ! A copy of each such license is available at ! http://www.opensource.org/licenses/gpl-2.0.php and ! http://opensource.org/licenses/gpl-3.0.html and ! http://www.opensource.org/licenses/lgpl-2.1.php and ! http://www.gnu.org/licenses/old-licenses/library.txt. ! ! Software ! BIOS: version 07.66 ! NXOS: version 9.3(3) ! BIOS compile time: 06/12/2019 ! NXOS image file is: bootflash:///nxos.9.3.3.bin ! NXOS compile time: 12/22/2019 2:00:00 [12/22/2019 06:00:37] ! ! ! Hardware ! cisco Nexus9000 C9372PX chassis ! Intel(R) Core(TM) i3- CPU @ 2.50GHz with 16399900 kB of memory. ! Processor Board ID SAL1940QACJ ! ! Device name: SV6-AF38-PETAEXPRESS-LEAF2-9372-37U ! bootflash: 51496280 kB ! show inventory ! ! NAME: "Chassis", DESCR: "Nexus9000 C9372PX chassis" ! PID: N9K-C9372PX , VID: V02 , SN: SAL1940QACJ ! ! NAME: "Slot 1", DESCR: "48x1/10G SFP+ 6x40G Ethernet Module" ! PID: N9K-C9372PX , VID: V02 , SN: SAL1940QACJ ! ! NAME: "Power Supply 1", DESCR: "Nexus9000 C9372PX chassis Power Supply" ! PID: N9K-PAC-650W-B , VID: V01 , SN: DCB2039Y0PH ! ! NAME: "Power Supply 2", DESCR: "Nexus9000 C9372PX chassis Power Supply" ! PID: N9K-PAC-650W-B , VID: V01 , SN: DCB1852Y29S ! ! NAME: "Fan 1", DESCR: "Nexus9000 C9372PX chassis Fan Module" ! PID: NXA-FAN-30CFM-F , VID: V01 , SN: N/A ! ! NAME: "Fan 2", DESCR: "Nexus9000 C9372PX chassis Fan Module" ! PID: NXA-FAN-30CFM-F , VID: V01 , SN: N/A ! ! NAME: "Fan 3", DESCR: "Nexus9000 C9372PX chassis Fan Module" ! PID: NXA-FAN-30CFM-F , VID: V01 , SN: N/A ! ! NAME: "Fan 4", DESCR: "Nexus9000 C9372PX chassis Fan Module" ! PID: NXA-FAN-30CFM-F , VID: V01 , SN: N/A ! ! ! show running-config !Command: show running-config !Running configuration last done at: Fri Nov 17 13:07:29 2023 version 9.3(3) Bios:version 07.66 hostname SV6-AF38-PETAEXPRESS-LEAF2-9372-37U policy-map type network-qos jumbomtu class type network-qos class-default mtu 9018 vdc SV6-AF38-PETAEXPRESS-LEAF2-9372-37U id 1 limit-resource vlan minimum 16 maximum 4094 limit-resource vrf minimum 2 maximum 4096 limit-resource port-channel minimum 0 maximum 256 limit-resource u4route-mem minimum 248 maximum 248 limit-resource u6route-mem minimum 96 maximum 96 limit-resource m4route-mem minimum 58 maximum 58 limit-resource m6route-mem minimum 8 maximum 8 feature privilege feature vrrp feature tacacs+ cfs eth distribute nv overlay evpn feature bgp feature pim feature interface-vlan feature vn-segment-vlan-based feature lacp feature dhcp feature vpc feature lldp clock timezone PST -8 0 feature nv overlay username admin password 5 $5$w8J1.9qg$skzjoU7FJmMKF8NYpYyf7I/meiQT.JDhLqPLAqcr8C/ role network-admin enable secret 5 $1$6e5551ac$fe8d53af974ab636 no ip domain-lookup ip domain-name SV6-leaf-sw2.n9372 ip tacacs source-interface mgmt0 tacacs-server host 199.180.100.29 key 7 "uwoxeamy123" tacacs-server host 64.71.150.196 key 7 "uwoxeamy123" aaa group server tacacs+ peg server 199.180.100.29 server 64.71.150.196 source-interface mgmt0 crypto key generate rsa label SV6-leaf-sw2 modulus 1024 ip access-list acl4internal-access 10 permit ip 10.255.0.0/16 any 20 deny ip 64.71.150.215/32 any 30 deny ip 64.71.150.216/32 any 40 deny ip 64.71.150.217/32 any 50 permit ip 64.71.150.128/25 any 60 permit ip 198.47.96.0/24 any 70 deny ip 199.180.100.11/32 any 80 deny ip 199.180.100.12/32 any 90 deny ip 199.180.100.13/32 any 100 permit ip 199.180.100.0/27 any 110 permit ip 199.180.101.96/28 any 120 permit ip 137.175.10.64/27 any 130 permit ip 137.175.96.0/24 any 140 permit ip 142.4.110.64/27 any 150 permit ip 107.148.208.208/28 any 160 permit ip 198.2.211.160/27 any 170 permit ip 198.2.215.208/28 any 180 permit ip 137.175.43.128 0.0.0.63 any 190 permit udp 116.58.208.30/32 any eq snmp 200 permit udp 137.175.13.76/32 any eq snmp 210 permit ip 142.4.100.48 0.0.0.15 any 220 permit ip 10.2.0.0/16 any ip access-list acl4snmp 10 permit ip 104.192.85.96/28 any 20 permit ip 10.255.0.0/16 any 30 permit ip 64.71.150.128/25 any 40 permit ip 198.47.96.0/24 any 50 permit ip 199.180.100.0/27 any 60 permit ip 199.180.101.96/28 any 70 permit ip 137.175.10.64/27 any 80 permit ip 137.175.96.0/24 any 90 permit ip 142.4.110.64/27 any 100 permit ip 107.121.208.208/28 any 110 permit ip 198.2.211.160/27 any 120 permit ip 198.2.215.208/28 any 130 permit ip 142.4.100.48/28 any 140 permit ip 199.180.100.112 0.0.0.7 any 150 permit ip 192.74.224.59/32 any system qos service-policy type network-qos jumbomtu copp profile strict snmp-server user admin network-admin auth md5 0x78e3d7db6b2354ed986e0bbc16dab101 priv 0x78e3d7db6b2354ed986e0bbc16dab101 localizedkey rmon event 1 description FATAL(1) owner PMON@FATAL rmon event 2 description CRITICAL(2) owner PMON@CRITICAL rmon event 3 description ERROR(3) owner PMON@ERROR rmon event 4 description WARNING(4) owner PMON@WARNING rmon event 5 description INFORMATION(5) owner PMON@INFO snmp-server community raksmartv2 group network-operator snmp-server community raksmartv2 use-ipv4acl acl4snmp ntp server 64.71.150.196 use-vrf default ntp server 199.180.100.29 use-vrf default aaa authentication login default group peg aaa authentication login console none aaa authorization config-commands default group peg aaa authorization commands default group peg aaa accounting default group peg vlan 1,11 vlan 11 name leaf1&2_global spanning-tree port type edge default ip prefix-list loopback1 seq 5 permit 10.2.241.0/24 le 32 route-map ebgp_loopback1 permit 10 match ip address prefix-list loopback1 service dhcp ip dhcp relay ipv6 dhcp relay vrf context management ip route 0.0.0.0/0 10.0.128.254 vpc domain 1 peer-keepalive destination 10.0.128.210 source 10.0.128.211 interface Vlan1 interface Vlan11 description leaf1&2_global no ip redirects ip address 10.2.10.252/24 vrrp 255 address 10.2.10.254 no shutdown interface port-channel12 description SPINE-3 no switchport ip address 10.2.240.27/31 interface port-channel16 description SPINE-4 no switchport ip address 10.2.240.35/31 interface port-channel20 description SV6-AE38-LEAF-1-37U-p20 switchport mode trunk spanning-tree port type network vpc peer-link interface port-channel501 description ObjectStorageGateway_server_1 switchport access vlan 11 vpc 501 interface port-channel502 description ObjectStorageGateway_server_2 switchport access vlan 11 vpc 502 interface port-channel503 description ObjectStorageGateway_server_3 switchport access vlan 11 vpc 503 interface port-channel701 description ObjectStorage_server_1 switchport access vlan 11 vpc 701 interface port-channel702 description ObjectStorage_server_2 switchport access vlan 11 vpc 702 interface port-channel703 description ObjectStorage_server_3 switchport access vlan 11 vpc 703 interface Ethernet1/1 description SV6-AG38-SPINE-3-39U-e1/5 no switchport channel-group 12 mode active no shutdown interface Ethernet1/2 description SV6-AG38-SPINE-3-39U-e1/6 no switchport channel-group 12 mode active no shutdown interface Ethernet1/3 description SV6-AG38-SPINE-3-39U-e1/7 no switchport channel-group 12 mode active no shutdown interface Ethernet1/4 description SV6-AG38-SPINE-3-39U-e1/8 no switchport channel-group 12 mode active no shutdown interface Ethernet1/5 description SV6-AG38-SPINE-4-43U-e1/5 no switchport channel-group 16 mode active no shutdown interface Ethernet1/6 description SV6-AG38-SPINE-4-43U-e1/6 no switchport channel-group 16 mode active no shutdown interface Ethernet1/7 description SV6-AG38-SPINE-4-43U-e1/7 no switchport channel-group 16 mode active no shutdown interface Ethernet1/8 description SV6-AG38-SPINE-4-43U-e1/8 no switchport channel-group 16 mode active no shutdown interface Ethernet1/9 description SV6-AE38-LEAF-1-37U-e1/9 switchport mode trunk channel-group 20 mode active interface Ethernet1/10 description SV6-AE38-LEAF-1-37U-e1/10 switchport mode trunk channel-group 20 mode active interface Ethernet1/11 description SV6-AE38-LEAF-1-37U-e1/11 switchport mode trunk channel-group 20 mode active interface Ethernet1/12 description SV6-AE38-LEAF-1-37U-e1/12 switchport mode trunk channel-group 20 mode active interface Ethernet1/13 interface Ethernet1/14 interface Ethernet1/15 interface Ethernet1/16 interface Ethernet1/17 interface Ethernet1/18 interface Ethernet1/19 interface Ethernet1/20 interface Ethernet1/21 interface Ethernet1/22 interface Ethernet1/23 interface Ethernet1/24 interface Ethernet1/25 description ObjectStorageGateway-server1-Ten4 switchport access vlan 11 channel-group 501 mode active interface Ethernet1/26 description ObjectStorageGateway-server2-Ten4 switchport access vlan 11 channel-group 502 mode active interface Ethernet1/27 description ObjectStorageGateway-server3-Ten4 switchport access vlan 11 channel-group 503 mode active interface Ethernet1/28 description ObjectStorage-server1-Ten3 switchport access vlan 11 channel-group 701 mode active interface Ethernet1/29 description ObjectStorage-server2-Ten3 switchport access vlan 11 channel-group 702 mode active interface Ethernet1/30 description ObjectStorage-server3-Ten3 switchport access vlan 11 channel-group 703 mode active interface Ethernet1/31 description ObjectStorage-server1-Ten4 switchport access vlan 11 channel-group 701 mode active interface Ethernet1/32 description ObjectStorage-server2-Ten4 switchport access vlan 11 channel-group 702 mode active interface Ethernet1/33 description ObjectStorage-server3-Ten4 switchport access vlan 11 channel-group 703 mode active interface Ethernet1/34 interface Ethernet1/35 interface Ethernet1/36 interface Ethernet1/37 interface Ethernet1/38 interface Ethernet1/39 interface Ethernet1/40 interface Ethernet1/41 interface Ethernet1/42 interface Ethernet1/43 interface Ethernet1/44 interface Ethernet1/45 interface Ethernet1/46 interface Ethernet1/47 interface Ethernet1/48 interface Ethernet1/49 interface Ethernet1/50 interface Ethernet1/51 interface Ethernet1/52 interface Ethernet1/53 interface Ethernet1/54 interface mgmt0 vrf member management ip address 10.0.128.211/24 interface loopback1 ip address 10.2.241.5/32 line console exec-timeout 5 line vty exec-timeout 20 access-class acl4internal-access in boot nxos bootflash:/nxos.9.3.3.bin ip access-list match-local-traffic router bgp 64900 router-id 10.2.241.5 address-family ipv4 unicast redistribute direct route-map ebgp_loopback1 maximum-paths 16 neighbor 10.2.240.26 remote-as 64903 local-as 64906 description SV6-AG38-SPINE-3-39U address-family ipv4 unicast allowas-in 3 route-map ebgp_loopback1 in route-map ebgp_loopback1 out next-hop-self neighbor 10.2.240.34 remote-as 64904 local-as 64906 description SV6-AG38-SPINE-4-43U address-family ipv4 unicast allowas-in 3 route-map ebgp_loopback1 in route-map ebgp_loopback1 out next-hop-self