The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
This chapter contains the following sections:
System port profiles are designed to establish and protect those ports and VLANs which need to be configured before the VEM contacts the VSM.
For this reason, the following ports must use system VLANs:
A system port profile must be of the Ethernet type because it is used for physical ports. This procedure configures the Ethernet type.
1. switch# configure terminal
2. switch(config)# port-profile [type {ethernet | vethernet}] name
3. (Optional) switch(config-port-prof)# description profile-description
4. switch(config-port-prof)# switchport mode trunk
5. switch(config-port-prof)# switchport trunk allowed vlan {vlan-id-list | all | none | [add | except | remove {vlan-list}]}
6. switch(config-port-prof)# no shutdown
7. switch(config-port-prof)# system vlan vlan-id-list
8. (Optional) switch(config-port-prof)# mtu mtu-size
9. (Optional) switch(config-port-prof)# show port-profile [brief | expand-interface | usage] [name profile-name]
10. (Optional) switch(config-port-prof)# copy running-config startup-config
This example shows how to create a system port profile:
switch# configure terminal switch(config)# port-profile AccessProf switch(config-port-prof)# description “System profile for critical ports” switch(config-port-prof)# system vlan 1 switch(config-port-prof)# show port-profile name AccessProf port-profile AccessProf description: type: vethernet status: disabled capability l3control: no pinning control-vlan: - pinning packet-vlan: - system vlans: 1 port-group: max ports: 32 inherit: port-profile xyz config attributes: switchport mode access switchport access vlan 1 switchport trunk allowed vlan 1-10 channel-group auto mode on sub-group cdp no shutdown evaluated config attributes: switchport mode access switchport access vlan 1 switchport trunk allowed vlan 1-10 mtu 1500 channel-group auto mode on sub-group cdp no shutdown assigned interfaces: switch(config-port-prof)#
1. From the vCenter Server, delete the port from the DVS.
2. Add the port to the vCenter Server with a different or modified port profile.
Step 1 | From the vCenter Server, delete the port from the DVS. |
Step 2 | Add the port to the vCenter Server with a different or modified port profile. |
You can use the following procedures to change the set of system VLANs in a trunk mode port profile without removing all system VLANs.
1. From the upstream switch for each VEM that carries this profile, shut off the switch port that carries the control VLAN.
2. Convert the port profile to an access profile with a system VLAN.
3. Convert the access port profile back to a trunk profile.
4. From the upstream switch for each VEM that carries this profile, unshut the switchport that carries the control VLAN.
Step 1 | From the upstream switch for each VEM that carries this profile, shut off the switch port that carries the control VLAN. |
Step 2 |
Convert the port profile to an access profile with a system VLAN. See Converting a Port Profile to an Access Profile with a System VLAN |
Step 3 |
Convert the access port profile back to a trunk profile. See Converting an Access Port Profile to a Trunk Port Profile |
Step 4 |
From the upstream switch for each VEM that carries this profile, unshut the switchport that carries the control VLAN. The VEMS are reconnected to the VSM. |
You can use this procedure to change the set of system VLANs in a trunk mode port profile without removing all system VLANs.
1. switch# configure terminal
2. switch(config)# port-profile [type {ethernet | vethernet}] name
3. switch(config-port-prof)# no system vlan
4. switch(config-port-prof)# switchport mode access
5. switch(config-port-prof)# switchport access vlan vlan-id
6. switch(config-port-prof)# no shutdown
7. switch(config-port-prof)# system vlan vlan-id-list
Command or Action | Purpose | |||
---|---|---|---|---|
Step 1 | switch# configure terminal | Enters global configuration mode. |
||
Step 2 | switch(config)# port-profile [type {ethernet | vethernet}] name | Enters port profile configuration mode for the named port profile. If the port profile does not already exist, it is created using the following characteristics:
|
||
Step 3 | switch(config-port-prof)# no system vlan | Remove the system VLAN from a port profile. |
||
Step 4 | switch(config-port-prof)# switchport mode access | Sets port mode access. |
||
Step 5 | switch(config-port-prof)# switchport access vlan vlan-id | Set the access mode of an interface. |
||
Step 6 | switch(config-port-prof)# no shutdown | Changes the port to administrative status so that system VLAN can be configured.
|
||
Step 7 | switch(config-port-prof)# system vlan vlan-id-list | Adds system VLANs to this port profile. |
The trunk port profile is converted to an access port profile with a system VLAN.
This example shows how to convert a trunk port profile to an access port profile.
switch# configure terminal switch(config)# port-profile Trunk_System_Prof switch(config-port-prof)# no system vlan switch(config-port-prof)# switchport mode access switch(config-port-prof)# switchport access vlan 1 switch(config-port-prof)# system vlan 300 switch(config-port-prof)#
1. switch# configure terminal
2. switch(config)# port-profile [type {ethernet | vethernet}] name
3. switch(config-port-prof)# switchport mode trunk
4. system vlan vlan-id-list
5. (Optional) switch(config-port-prof)# show port-profile [brief | expand-interface | usage] [name profile-name]
6. (Optional) switch(config-port-prof)# copy running-config startup-config
Command or Action | Purpose | |||
---|---|---|---|---|
Step 1 | switch# configure terminal | Enters global configuration mode. |
||
Step 2 | switch(config)# port-profile [type {ethernet | vethernet}] name | Enters port profile configuration mode for the named port profile. If the port profile does not already exist, it is created using the following characteristics:
|
||
Step 3 | switch(config-port-prof)# switchport mode trunk | Designates that the interfaces are to be used as a trunking ports. A trunk port transmits untagged packets for the native VLAN and transmits encapsulated, tagged packets for all other VLANs. |
||
Step 4 | system vlan vlan-id-list |
Adds system VLANs to this port profile. |
||
Step 5 | switch(config-port-prof)# show port-profile [brief | expand-interface | usage] [name profile-name] | (Optional) Displays the configuration for verification. |
||
Step 6 | switch(config-port-prof)# copy running-config startup-config | (Optional) Saves the change persistently through reboots and restarts by copying the running configuration to the startup configuration. |
This example shows how to convert an access port profile to a trunk port profile.
switch# config terminal switch(config)# port-profile Trunk_System_Prof switch(config-port-prof)# switchport mode trunk switch(config-port-prof)# system vlan 114,115 switch(config-port-prof)# show port-profile name Trunk_System_Prof port-profile Trunk_System_Prof description: type: vethernet status: enabled capability l3control: no pinning control-vlan: - pinning packet-vlan: - system vlans: 114,115 port-group: max ports: 32 inherit: config attributes: switchport mode trunk switchport trunk allowed vlan all no shutdown evaluated config attributes: switchport mode trunk switchport trunk allowed vlan all mtu 1500 no shutdown assigned interfaces: switch(config-port-prof)# copy running-config startup-config
You can use this procedure to change the set of system VLANs in an access port profile without removing all system VLANs.
1. switch# configure terminal
2. switch(config)# port-profile [type {ethernet | vethernet}] name
3. switch(config-port-prof)# system vlan vlan-id-list
4. (Optional) switch(config-port-prof)# show port-profile [brief | expand-interface | usage] [name profile-name]
5. (Optional) switch(config-port-prof)# copy running-config startup-config
Command or Action | Purpose | |||
---|---|---|---|---|
Step 1 | switch# configure terminal | Enters global configuration mode. |
||
Step 2 | switch(config)# port-profile [type {ethernet | vethernet}] name | Enters port profile configuration mode for the named port profile. If the port profile does not already exist, it is created using the following characteristics:
|
||
Step 3 | switch(config-port-prof)# system vlan vlan-id-list | Adds system VLANs to this port profile. |
||
Step 4 | switch(config-port-prof)# show port-profile [brief | expand-interface | usage] [name profile-name] | (Optional) Displays the configuration for verification. |
||
Step 5 | switch(config-port-prof)# copy running-config startup-config | (Optional) Saves the change persistently through reboots and restarts by copying the running configuration to the startup configuration. |
This example shows how to change the set of system VLANs in an access port profile without removing all system VLANs.
switch# configure terminal switch(config)# port-profile Access_System_Prof switch(config-port-prof)# system vlan 114,115 switch(config-port-prof)# show port-profile name Access_System_prof port-profile Access_System_Prof description: type: vethernet status: enabled capability l3control: no pinning control-vlan: - pinning packet-vlan: - system vlans: 114,115 port-group: max ports: 32 inherit: config attributes: switchport mode access switchport trunk allowed vlan all no shutdown evaluated config attributes: switchport mode access switchport trunk allowed vlan all mtu 1500 no shutdown assigned interfaces: switch(config-port-prof)# copy running-config startup-config
From the upstream switch for each VEM that carries this profile, unshut the switchport that carries the control VLAN.
Feature Name |
Release |
Feature Information |
---|---|---|
MTU |
4.2(1)SV1(4) |
The system mtu command is removed and replaced with the mtu command. |
system mtu |
4.0(4)SV1(3) |
The system mtu command allows you to preserve a non-default MTU setting on the PNIC attached to the Cisco Nexus 1000V across reboots of the ESX server. |
System Port Profiles |
4.0(4)SV1(1) |
This feature was introduced. |