|
Feature |
Product |
Release introduced |
|---|---|---|
|
For configuration details, see VOSS User Guide. |
||
|
Segmented Management Instance - Management Interface CLIP |
5520 Series |
VOSS 8.2.5 |
|
VSP 4450 Series |
VOSS 7.0 |
|
|
VSP 4900 Series |
VOSS 8.1 |
|
|
VSP 7200 Series |
VOSS 7.0 |
|
|
VSP 7400 Series |
VOSS 8.0 |
|
|
VSP 8200 Series |
VOSS 7.0 |
|
|
VSP 8400 Series |
VOSS 7.0 |
|
|
VSP 8600 Series |
VSP 8600 8.0 |
|
|
XA1400 Series |
VOSS 8.1.1 - IPv4 only Note:
VOSS 8.1.50 does not support this feature. |
|
|
Segmented Management Instance - Management Interface OOB |
5520 Series |
VOSS 8.2.5 |
|
VSP 4450 Series |
Not Supported |
|
|
VSP 4900 Series |
VOSS 8.2 |
|
|
VSP 7200 Series |
VOSS 8.2 |
|
|
VSP 7400 Series |
VOSS 8.2 |
|
|
VSP 8400 Series |
VOSS 8.2 |
|
|
VSP 8600 Series |
Not Supported |
|
|
XA1400 Series |
Not Supported |
|
|
Segmented Management Instance - Management Interface VLAN |
5520 Series |
VOSS 8.2.5 |
|
VSP 4450 Series |
VOSS 7.0 |
|
|
VSP 4900 Series |
VOSS 8.1 |
|
|
VSP 7200 Series |
VOSS 7.0 |
|
|
VSP 7400 Series |
VOSS 8.0 |
|
|
VSP 8400 Series |
VOSS 7.0 |
|
|
VSP 8600 Series |
Not Supported |
|
|
XA1400 Series |
VOSS 8.1.1 - IPv4 only Note:
VOSS 8.1.50 does not support this feature. |
|
|
Segmented Management Instance — ability to migrate VLAN or loopback IP address |
5520 Series |
Not Applicable |
|
VSP 4450 Series |
VOSS 8.2 |
|
|
VSP 4900 Series |
VOSS 8.2 |
|
|
VSP 7200 Series |
VOSS 8.2 |
|
|
VSP 7400 Series |
VOSS 8.2 |
|
|
VSP 8200 Series |
VOSS 8.2 |
|
|
VSP 8400 Series |
VOSS 8.2 |
|
|
VSP 8600 Series |
Not Supported |
|
|
XA1400 Series |
VOSS 8.2 |
|
|
Segmented Management Instance — DHCP Client for Management Interface OOB or Management Interface VLAN |
5520 Series |
VOSS 8.2.5 |
|
VSP 4450 Series |
VOSS 8.2 |
|
|
VSP 4900 Series |
VOSS 8.2 |
|
|
VSP 7200 Series |
VOSS 8.2 |
|
|
VSP 7400 Series |
VOSS 8.2 |
|
|
VSP 8200 Series |
VOSS 8.2 |
|
|
VSP 8400 Series |
VOSS 8.2 |
|
|
VSP 8600 Series |
Not Supported |
|
|
XA1400 Series |
VOSS 8.2 OOB not supported |
|
This section details administrative tasks to configure a Segmented Management Instance. A Management Instance is required to provide access to specific management applications.
With Segmented Management, the Management plane (management protocols) is separated from the Control Plane (routing plane) from a process and data-path perpective. Segmented Management is the only method to management switches. One or a combination of the following management interface/management instance types can be used:
Out-of-Band (OOB) management IP address (IPv4 and/or IPv6)
In-band Loopback/circuitless IP (CLIP) management IP address (IPv4 and/or IPv6)
In-band management VLAN IP address (IPv4 and/or IPv6)
Segmented Management provides better security because you cannot reach the management instance from outside the VRF (in case of CLIP) or outside VLAN/I-SID (in case of management VLAN) and because it has a built-in firewall for the management plane. There is also more predictability with symmetric traffic flows for management traffic originating from and terminating on the switch, for instance:
Sessions originated from switch (client mode) - Source IP of packets is determined based on Management IP stack routing table weights (configurable).
Sessions connecting to switch (server mode) - Source IP is derived from session connection and reply will go out on management interface packet.