Q1. What is NEXUS?
NEXUS is a bi-national, Canada-United States program for pre-approved, low-risk travelers entering Canada or the United States (U.S.) at designated air, land and marine ports of entry.
The program enables its members to enter either country more quickly and easily by using automated self-serve kiosks in the air mode of travel, dedicated lanes in the land mode of travel, and by calling Telephone Reporting Centres (TRCs) prior to arrival in the marine mode of travel.
Q2. Is there a fee involved to apply for NEXUS?
Yes. There is a non-refundable processing fee of $50 in Canadian or U.S. funds.
Q3. What is iris recognition biometric technology?
Iris recognition biometric technology identifies the unique patterns of the iris (the coloured ring around the pupil of the eye). The technology reads each of the 266 unique characteristics in the human iris. It is safe, secure and non-invasive.
Q4. What is the size of a NEXUS card?
A NEXUS card is approximately the same size as a standard credit card or driver’s licence.
Q5. Where is NEXUS in the air mode available?
NEXUS in the air mode is available at 8 locations when entering Canada.
In addition, please note that a trusted traveller kiosk is also available at Billy Bishop Toronto City Airport, for incoming flights only for use by members of NEXUS and CANPASS Air.
Q6. Where is NEXUS in the land mode available?
NEXUS in the land mode is available at 21 locations when entering Canada
Q7. Where is NEXUS in the marine mode available?
NEXUS in the marine mode is available at approximately 450 locations when entering Canada.
Q8. Why does vPC not block either of the vPC uplinks?
Nexus 7000 has a loop prevention method that drops traffic traversing the peer link (destined for a vPC peer link) when there are no failed vPC ports or links. The rule is simple: if the packet crosses the vPC peer link, it may not go out any port in a vPC even if that vPC does not have the original VLAN.
Q9. Is there a tool available for configuration conversion on Cisco 6500 series to the Nexus platform?
Cisco has developed the IOS-NXOS Migration Tool for quick configuration conversion on Cisco 6500 series to the Nexus series OS.
Q10. What are orphan ports?
Orphan ports are single attached devices that are not connected via a vPC, but still carry vPC VLANs. In the instance of a peer-link shut or restoration, an orphan port’s connectivity may be bound to the vPC failure or restoration process. Issue the show vpc orphan-ports command in order to identify the impacted VLANs.
Q11. What is the minimum NX-OS release required to support FCoE in the Nexus 7000 Series Switches?
FCoE is supported on Cisco Nexus 7000 Series systems running Cisco NX-OS Release 5.2 or later.
Q12. What Are Orphan Ports?
Orphan ports are unmarried attached devices that aren’t connected through a vPC, however nonetheless carry vPC VLANs. In the example of a peer-hyperlink close or recovery, an orphan port’s connectivity may be certain to the vPC failure or recovery method. Issue the show vpc orphan-ports command with a purpose to perceive the impacted VLANs.
Q13. On A Nexus, Is The Metric-kind Keyword Not Available In The “default-facts Originate” Command?
On a Nexus, use a course-map command with a fixed clause of metric-type type-[½] a good way to have the same functionality as in IOS the use of the default-statistics originate always metric-type [½] command.
For example:
transfer(config)#course-map STAT-OSPF, permit, collection 10switch(config-route-map) #suit interface ethernet 1/2switch(config-course-map) #set metric-kind outside internal type type-2
Q14. What Is Vpc And What Are Its Benefits?
Virtual PortChannel (vPC) is a port-channeling idea that extends hyperlink aggregation to 2 separate physical switches.
Benefits of vPC encompass:
Utilizes all available uplink bandwidth
Allows the introduction of resilient Layer 2 topologies primarily based on hyperlink aggregation
Eliminates the dependence of Spanning Tree Protocol in Layer 2 access distribution layer(s)
Enables obvious server mobility and server excessive availability (HA) clusters
Scales to be had Layer 2 bandwidth
Simplifies community layout
Dual-homed servers can operate in active-lively mode
Faster convergence upon hyperlink failure
Improves convergence time when a unmarried tool fails
Reduces capex and opex
Q15. What Does The %eem_action-6-tell: Packets Dropped Due To Ids Check Length Consistent On Module Message Mean?
Cisco NX-OS supports Intrusion Detection System (IDS) assessments that validate IP packets to make certain right formatting. This is an enhancement beginning in five.X.
The EEM message is being logged due to the fact a packet is obtained with the aid of the switch where the Ethernet body length is shorter than the predicted length to include the IP packet duration plus the Ethernet header. The packet is dropped by means of the hardware due to this situation.
In order to affirm that the IDS drops befell because the closing switch reboot, difficulty the show hardware forwarding ip verify module [#] “.
Q16. How Many Syslog Servers Can Be Added To A Nexus 7000 Series Switch?
The maximum range of syslog servers configured is three.
Q17. Is Nexus 7010vpc Feature (lacp Enabled) Compatible With The Cisco Asa Etherchannel Feature And With Ace 4710 Etherchannel?
With recognize to vPC, any tool that runs the LACP (that’s a wellknown), is like minded with the Nexus 7000, which include ASA/ACE.
Q18. Which Nexus 7000 Modules Support Fibre Channel Over Ethernet (fcoe)?
The Cisco Nexus 7000 Series 32-Port 1 and 10 Gigabit Ethernet Module assist FCoE. The part variety of the product is N7K-F132XP-15.
Q19. Wherever Is Nexus within the Air Mode Available?
NEXUS within the air mode is on the market at eight locations once getting into Canada.
In addition, please note that a trusty traveler booth is additionally accessible at Billy Bishop provincial capital town field, for incoming flights just for use by members of NEXUS and CANPASS Air.
Q20. Why will Vpc Not Block Either Of The Vpc Uplinks?
Nexus 7000 incorporates a loop hindrance methodology that drops traffic traversing the peer link (destined for a vPC peer link) once there aren’t any failing vPC ports or links. The rule is simple: if the packet crosses the vPC peer link, it should not leave any port in a very vPC although that vPC doesn’t have the first VLAN.
Q21. Is There A Tool accessible For Configuration Conversion On Cisco 6500 Series To The Nexus Platform?
Cisco has developed the IOS-NXOS Migration Tool for fast configuration conversion on Cisco 6500 series to the Nexus series OS.
Q22. However, Do I produce A Peer Link For Vdc And A Keepalive Link for every Vdc?
Configure the vPC Keepalive Link and Messages
This example demonstrates a way to assemble the destination, supply informatics address, and VRF for the vPC-peer-keepalive link:
switch# assemble terminal
switch(config)# feature vpc
switch(config)# vpc domain a hundred
switch(config-vpc-domain)# peer-keepalive destination 172.168.1.2 source
172.168.1.1 vrf vpc-keepalive
Create the vPC Peer Link
Q23. What will The îm_action-6-inform: Packets born thanks to Ids Check Length Consistent On Module Message Mean?
Cisco NX-OS supports Intrusion Detection System (IDS) checks that validate informatics packets to confirm correct information. this is often Associate in Nursing sweetening starting in five.x.
The EEM message is being logged as a result of a packet is received by the switch wherever the LAN frame size is shorter than the expected length to incorporate the informatics packet length and the LAN header. The packet is born by the hardware thanks to this condition.
Q24. What number Syslog Servers is additional To A Nexus 7000 Series Switch?
The maximum range of syslog servers designed is three.
What number Ospf Processes is Run in a very Virtual Device Context (vdc)?
There is up to four (4) instances of OSPFv2 in a very VDC.
Q25. On A Nexus, is that the Metric-type Keyword Not offered within the “default-information Originate” Command?
On a Nexus, use a route-map command with a collection clause of metric-type type-[½] so as to possess an equivalent practicality as in IOS exploitation the default-information originate forever metric-type [½] command.
For example:
switch(config)#route-map STAT-OSPF, permit, sequence ten
switch(config-route-map)#match interface local area network 1/2
switch(config-route-map)#set metric-type internal
Q26. Why Does Vpc Not Block Either Of The Vpc Uplinks?
Nexus 7000 has a loop prevention method that drops traffic traversing the peer link (destined for a vPC peer link) when there are no failed vPC ports or links. The rule is simple: if the packet crosses the vPC peer link, it may not go out any port in a vPC even if that vPC does not have the original VLAN.
Q27. Is There A Tool Available For Configuration Conversion On Cisco 6500 Series To The Nexus Platform?
Cisco has developed the IOS-NXOS Migration Tool for quick configuration conversion on Cisco 6500 series to the Nexus series OS.
Q28. On A Nexus, Is The Metric-type Keyword Not Available In The “default-information Originate” Command?
On a Nexus, use a route-map command with a set clause of metric-type type-[½] in order to have the same functionality as in IOS using the default-information originate always metric-type [½] command.
For example:
switch(config)#route-map STAT-OSPF, permit, sequence 10switch(config-route-map) #match interface ethernet 1/2switch(config-route-map) #set metric-type {external | internal | type-1 | type-2}
Q29. How Do I Create A Peer Link For Vdc And A Keepalive Link For Each Vdc?
Configure the vPC Keepalive Link and Messages
Q30. How Many Syslog Servers Can Be Added To A Nexus 7000 Series Switch?
The maximum number of syslog servers configured is 3.
Q31. Is Nexus 7010vpc Feature (lacp Enabled) Compatible With The Cisco Asa Etherchannel Feature And With Ace 4710 Etherchannel?
With respect to vPC, any device that runs the LACP (which is a standard), is compatible with the Nexus 7000, including ASA/ACE.
Q32. How Many Ospf Processes Can Be Run In A Virtual Device Context (vdc)?
There can be up to four (4) instances of OSPFv2 in a VDC.
Q33. What Is The Equivalent Nx-os Command For The “ip Multicast-routing” Ios Command, And Does The Nexus 7000 Support Pim-sparse Mode?
The command is feature pim. In NX-OS, multicast is enabled only after enabling the PIM or PIM6 feature on each router and then enabling PIM or PIM6 sparse mode on each interface that you want to participate in multicast.
For example:
switch(config)#feature pim
switch(config)#interface Vlan[536]
switch(config-if)#ip pim sparse-mode
Q34. How Do I Avoid Receiving The “failed To Process Kickstart Image. Pre-upgrade Check Failed” Error Message When Upgrading The Image On A Nexus 7000 Series Switch?
One potential reason for receiving this error message is if the file name specified is not correct.
For example:
switch#install all kickstart bootflash:n7000-sl-kickstart.5.1.1a.bin system
bootflash:n7000-sl-dk9.5.1.1a.binIn this example, the file name contains “sl” (lowercase letter l) instead of “s1” (number 1).
Q35. How Can I Avoid Receiving The “configuration Does Not Match The Port Capability” Error Message When Enabling “switchport Mode Fex-fabric”?
This error message is generated because the port is not FEX capable:
N7K-2(config)#interface ethernet 9/5
N7K-2(config-if)#switchport mode fex-fabricERROR: Ethernet9/5: Configuration does not match the port capability
Q36. How Do I Enable/disable Logging Link Status Per Port Basis On A Nexus 7000 Series Switch?
All interface link status (up/down) messages are logged by default. Link status events can be configured globally or per interface. The interface command enables link status logging messages for a specific interface.
For example:
N7k(config)#interface ethernet x/x
N7k(config-if)#logging event port link-status
Q37. How Do I Implement Vtp In A Nexus 7000 Series Switch Where Vlans Are Manually Configured?
Cisco does not recommend running VTP in data centers. If someone attaches a switch to the network with a higher revision number without changing the VTP mode from the server, it will override the VLAN configuration on the switch.
Q38. What is the command is used to verify the “HSRP Active State” on a Nexus 7000 Series Switch?
The command is show hsrp active or show hsrp brief .
Nexux_7K# show hsrp br
Nexus_7K# show hsrp standb br
Q39. On a Nexus 7018, when trying to perform a ‘no shut’ on Ethernet 1/3, the ERROR: Ethernet1/3: Config not allowed, as first port in the port-grp is dedicated error message is received.
The device thinks that the first port in the port-grp is in dedicated mode instead of shared mode. When the first port of a port-grp is in dedicated mode, the other ports of the port-grp cannot be used.
Q40. Why does vPC not block either of the vPC uplinks?
Nexus 7000 has a loop prevention method that drops traffic traversing the peer link (destined for a vPC peer link) when there are no failed vPC ports or links. The rule is simple: if the packet crosses the vPC peer link, it may not go out any port in a vPC even if that vPC does not have the original VLAN.
Q41. Is there a tool available for configuration conversion on Cisco 6500 series to the Nexus platform?
Cisco has developed the IOS-NXOS Migration Tool for quick configuration conversion on Cisco 6500 series to the Nexus series OS.
Q42. Is Nexus 7010vPC feature (LACP enabled) compatible with the Cisco ASA etherchannel feature and with ACE 4710 etherchannel?
With respect to vPC, any device that runs the LACP (which is a standard), is compatible with the Nexus 7000, including ASA/ACE.
Q43. Which Nexus 7000 modules support Fibre Channel over Ethernet (FCoE)?
The Cisco Nexus 7000 Series 32-Port 1 and 10 Gigabit Ethernet Module support FCoE. The part number of the product is N7K-F132XP-15.
Q44. What is the minimum NX-OS release required to support FCoE in the Nexus 7000 Series Switches?
FCoE is supported on Cisco Nexus 7000 Series systems running Cisco NX-OS Release 5.2 or later
Q45. What is the equivalent NX-OS command for the “ip multicast-routing” IOS command, and does the Nexus 7000 support PIM-Sparse mode?
The command is feature pim. In NX-OS, multicast is enabled only after enabling the PIM or PIM6 feature on each router and then enabling PIM or PIM6 sparse mode on each interface that you want to participate in multicast.
For example:
switch(config)#feature pim
switch(config)#interface Vlan[536]switch(config-if)#ip pim sparse-mode
See Cisco Nexus 7000 Series NX-OS Multicast Routing Configuration Guide, Release 5.x for a complete configuration guide.
Q46. How do I avoid receiving the “Failed to process kickstart image. Pre-Upgrade check failed” error message when upgrading the image on a Nexus 7000 Series Switch?
One potential reason for receiving this error message is if the file name specified is not correct.
For example:
switch#install all kickstart bootflash:n7000-sl-kickstart.5.1.1a.bin system
bootflash:n7000-sl-dk9.5.1.1a.bin
In this example, the file name contains “sl” (lowercase letter l) instead of “s1” (number 1).
Q47. When I issue the “show interface counters errors” command, I see that one of the interfaces is consistently posting errors. What are the FCS-Err and Rcv-Err in the output of the “show interface counters errors” command?
Here is what is received:
Nexus-7000#show interface counters errors
—————————————————————————-
Port Align-Err FCS-Err Xmit-Err Rcv-Err UnderSize OutDiscards
—————————————————————————-
Eth1/1 0 26 0 26 0 0
With FCS-Err and Rcv-Err, it is usually an indication that you are receiving corrupt packets.
Q48. Can a Nexus 7000 be a DHCP server and can it relay DHCP requests to different DHCP servers per VLAN?
The Nexus 7000 does not support a DHCP server, but it does support DHCP relay. For relay, use the ip dhcp relay address x.x.x.x interface command.
See Cisco Nexus 7000 Series NX-OS Security Configuration Guide, Release 5.x for more information on Dynamic Host Configuration Protocol (DHCP) on a Cisco NX-OS device.
Q49. How Do I Enable/disable Logging Link Status Per Port Basis On A Nexus 7000 Series Switch?
All interface link status (up/down) messages are logged by default. Link status events can be configured globally or per interface. The interface command enables link status logging messages for a specific interface.
For example:
N7k(config)#interface ethernet x/x
N7k(config-if)#logging event port link-status
Q50. How Can I Avoid Receiving The “configuration Does Not Match The Port Capability” Error Message When Enabling “switchport Mode Fex-fabric”?
This blunders message is generated due to the fact the port isn’t always FEX capable:
N7K-2(config)#interface ethernet 9/five
N7K-2(config-if)#switchport mode fex-fabric
ERROR: Ethernet9/five: Configuration does now not in shape the port capability
Related video:
- DevOps Certified Professionals (DCP)
- Site Reliability Engineering Certified Professionals (SRECP)
- Master in DevOps Engineering (MDE)
- DevSecOps Certified Professionals (DSOCP)
URL - https://www.devopsschool.com/certification/
My Linkedin - https://www.linkedin.com/in/rajeshkumarin
My Email - contact@DevOpsSchool.com
- Packer Tutorials: Amazon Secrets Manager Data Source – amazon-secretsmanager - May 25, 2023
- Packer Tutorials: Amazon Data Sources – amazon-parameterstore - May 25, 2023
- What is DevSecTestOps? - May 25, 2023
