Deployment Guide
58 Leaf-Spine Deployment and Best Practices Guide | Version 1.0
10.1 Z9100-ON leaf switch configuration
The following section outlines the configuration commands issued to the Z9100-ON leaf switches to build the
topology in Figure 17. The commands detailed below are for L2-Leaf1-Z9100 and L2-Leaf2-Z9100. The
configuration commands for L2-Leaf3-Z9100 and L2-Leaf4-Z9100 are similar and are provided in the
attachments.
Note: On Z9100-ON switches, Telnet is enabled and SSH is disabled by default. Both services require the
creation of a non-root user account to login. If needed, it is a best practice to use SSH instead of Telnet for
security. SSH can optionally be enabled with the command: (conf)#ip ssh server enable.
A user account can be created to access the switch via SSH with the command
(conf)#username ssh_user sha256-password ssh_password
First, configure the serial console enable password and disable Telnet.
L2-Leaf1-Z9100
L2-Leaf2-Z9100
enable
configure
enable sha256-password enable_password
no ip telnet server enable
enable
configure
enable sha256-password enable_password
no ip telnet server enable
Set the hostname, configure the OOB management interface and default gateway. Enable LLDP. Enable
RSTP as a precaution.
Note: In this layer 2 topology, the RSTP root bridge is configured at the spine level.
L2-Leaf1-Z9100
L2-Leaf2-Z9100
hostname L2-Leaf1-Z9100
interface ManagementEthernet 1/1
ip address 100.67.194.5/24
no shutdown
management route 0.0.0.0/0
100.67.194.254
protocol lldp
advertise management-tlv management-
address system-description system-name
advertise interface-port-desc
protocol spanning-tree rstp
no disable
hostname L2-Leaf2-Z9100
interface ManagementEthernet 1/1
ip address 100.67.194.6/24
no shutdown
management route 0.0.0.0/0
100.67.194.254
protocol lldp
advertise management-tlv management-
address system-description system-name
advertise interface-port-desc
protocol spanning-tree rstp
no disable