Beginning with VOSS 8.3, the switch initiates Zero Touch Fabric Configuration if you boot without a configuration file.
To add new Zero Touch Fabric Configuration devices or implement Zero Touch Fabric Configuration on existing devices, the network requires a nickname server and reachability to the DHCP server and, optionally, ExtremeCloud IQ servers or Extreme Management Center. How you implement this depends on if the network is a new deployment using VOSS 8.3 or an existing Fabric network that you upgrade to VOSS 8.3. In a new deployment, you can meet the network requirements with one node, known as a seed node. In an existing network, functions can already exist on different nodes.
The following list identifies the network requirements before you add new Zero Touch Fabric Configuration devices or implement Zero Touch Fabric Configuration on existing devices:
You must configure a node as the nickname server, if one does not already exist. This node can be anywhere in the SPB Fabric area.
The DHCP server must be reachable by the remote nodes:
In an existing network, the DHCP server can be anywhere in the network. If the DHCP server is on a different IP subnet from the onboarding I-SID, configure DHCP Relay functionality on the routing interface, and you must also create VLAN 4048, configure 15999999 as the Auto-sense onboarding I-SID, and associate this I-SID with VLAN 4048.
If the DHCP server is on the same subnet as the onboarding I-SID, configure the port facing the DHCP server as private-vlan promiscuous, using Private VLAN 4048. This VLAN and the Auto-sense onboarding I-SID are created automatically on a newly deployed device.
Starting in VOSS 8.3, ports send Fabric Connect LLDP TLVs regardless of the Auto-sense configuration, which means these devices can establish adjacencies with other VOSS 8.3 devices that use either Auto-sense or static NNI configuration.
In an existing network that includes devices that run an earlier version of VOSS, such as VOSS 8.2.6, you must manually configure the NNI. Because the port running in the earlier release does not send Fabric Connect LLDP TLVs, an adjacency with a VOSS 8.3 node does not form automatically.
For Zero Touch Fabric Configuration to work when a new switch that runs VOSS 8.3 connects to a switch on an existing Fabric, upgrade at least the existing Fabric switches to VOSS 8.3 first.
Some SPB deployments use Ethertype 0x88a8 but many use 0x8100. Zero Touch Fabric Configuration works with existing networks that use either value as long as the existing switches that connect to the new switches run VOSS 8.3.
Important
If you deploy a Fabric-capable switch with Auto-sense enabled, the switch interacts with existing switches that support Fabric Attach (FA). If an existing FA Proxy switch does not have FA server connectivity established yet, it will form an FA connectivity to the newly connected VOSS 8.3 switch as it announces itself as an FA server. To avoid unintended FA connectivity, disable Auto-sense using the no auto-sense enable command on the relevant ports.
On switches (upgraded existing or newly deployed) where you want to initiate Zero Touch Fabric Configuration, perform the following tasks:
Upgrade to VOSS 8.3 if the device is not a new deployment already running VOSS8.3. For a new deployment, ensure the network operating system (NOS) is VOSS.
On upgraded existing switches, ensure the switch boots without a configuration file. The switch joins the network as an end host. To ensure the switch boots without a configuration file, perform one of the following actions:
Rename existing primary and secondary configuration files. Use the mv command to rename the existing configuration files. For example, mv config.cfg config.cfg.backup.
This is the preferred option as it ensures that the primary and secondary files are removed while making a backup of them at the same time. This option also ensures that the switch uses the default config.cfg file for the final configuration after it has successfully onboarded.
Boot from non-existent configuration files. Use the boot config choice command to configure the primary and backup configuration files to reference files that do not exist on the switch:
boot config choice primary config-file nonexistent1.cfg
boot config choice primary backup-config-file nonexistent2.cfg
This option also works, however, after the switch has successfully onboarded, it does not use the default config.cfg file but uses the alternative configuration file name provided instead, which might not be desired.
Delete the existing primary and secondary configuration files. Create a backup of these files before you delete them.
The switch creates a Zero Touch Deployment configuration to onboard the switch, including the following Zero Touch Fabric Configuration items:
Note
For more details on Zero Touch Deployment, see VOSS User Guide.
Creates private VLAN 4048.
Enables SPBM.
Creates SPBM instance 1.
Creates default backbone VLANs (B-VLAN) (4051 and 4052).
Creates manual area 00.1515.fee1.900d.1515.fee1.900d.
Note
The B-VLAN and manual area configuration values are not compulsory. This remote switch can attach to a Fabric core that does not match these values because the Auto-sense functionality dynamically learns the B-VLANs and manual area in use in the Fabric core from the connected seed node using LLDP.
Creates the onboarding I-SID 15999999.
Assigns the onboarding I-SID to private VLAN 4048 and also includes the management VLAN.
Note
As a best practice, use the onboarding I-SID for onboarding purposes and, whenever possible, configure a management VLAN or management CLIP on a different I-SID after the onboarding procedures have been successfully completed.
Enables Auto-sense on all ports.
Configures Auto-sense access ports and Layer 2 trusted Auto-sense ports.
Enables IS-IS globally.
With Auto-sense, ports on a switch can detect whether they connect to an SPB device, a Fabric Attach (FA) client, FA Proxy, Voice IP devices, or an undefined host, and then make the necessary configuration.
If the seed node uses Auto-sense IS-IS Authentication, configure the remote switch to use the same authentication type and key as the seed node.
The switch joins the Fabric.
The nickname server dynamically assigns an SPBM nickname.