Cisco NX-OS: Virtual Port Channel (vPC)

C3750 Cross Stack Port Channels (StackWise)
- single control plane
C6500 Virtual Switching System (VSS)
- single control plane
- via Virtual Switch Link (VSL)
Nexus Virtaul Port Channel (vPC)
- separate control planes
- separate control plane protocol instances (STP/IGPs/BGP/FHRP)
- via a Peer Link (like VSS’s VSL)

Peer Link
- to sync control plane between vPC peers (CAM/ARP/IGMP)
- uses CFSoE (Cisco Fabric Service over Ethernet)
- used to elect a vPC Primary and vPC Secondary Role
- normally not used for the data plane => much lower BW
Peer Keepalive Link
- L3 link used as heartbeat in the control plane
- used to prevent active/active or “Split Brain” vPC roles
- not used in the vPC data plane
- could back to back or over routed infrastructure (vrf)
vPC Member ports
- from downstream neighbor the vPC peers is one switch

Note: VLANS on vPC Member ports must be added on the Peer link too

Loops are prevented via “vPC Check”:

Frames received on the vPC Peer link can not flood out a vPC Member Port while original vPC Peer has active vPC Members in the same vPC
if vPC peer’s members are down, the vPC member ports => “Orphan ports” and vPC Check is disabled
it is possible because both switches have info about status of vPC on the Peer switch over vPC member

NXOS2 will not flood frames (received over vPC Peer Link) over Po45 while NXOS1 Po45 is up.

Type 1 Global and Interface Consistency Check
- if global mismatch - vPC failing to form
- if interface mismatch - VLANs being suspended
Type 2 Consistency Check
- if mismatch - log messaged but not vPC failure, but could be data plane failures