Cisco Nexus Two-stage Configuration Commit
Umair Ali Syed
Network Architect | CCIE-DC 52006 | TOGAF | Cloud & Infrastructure | Cisco ACI | MBA Leadership | Masters Degree |
In a Nexus CLI, entering a command immediately changes the running configuration and taken into effect. This behavior is called "one-stage configuration". However a new feature on NxOS release 10.1+ a commit model approach aka. Dual-stage Configuration Commit where the changes are stored in a staging database and do not affect the running configuration until the commit command is executed. This two-stage process allows you to create a target configuration session where you can make, edit, and verify changes before committing them to the switch’s running state.
Key Benefits:
Pre-check and Verify: Make and verify changes before they take effect.
Enhanced Control: Apply changes only when you’re ready.
Rollback Capability: Revert to previous configurations if needed.
Let’s explore how to use this feature.
!!!!! Enter into config mode !!!!
dev-SW001-CORE# conf
!!!! Enter into Dual Stage config mode !!!!
dev-SW001-CORE(config)# configure dual-stage
!!!! Make changes to your configs !!!! dev-SW001-CORE(config-dual-stage)# hostname I-AM-ON-DUAL-STAGE-MODE
!!!! commit the configs: here we just comfirmed our configs for 30 secconds for testing purpose !!!!
dev-SW001-CORE(config-dual-stage)# commit confirmed 30 ?
<CR>
dev-SW001-CORE(config-dual-stage)# commit confirmed 30
Verification Succeeded.
Proceeding to apply configuration. This might take a while depending on amount of configuration in buffer.
Please avoid other configuration changes during this time.
Configuration committed by user 'admin' using Commit ID : 1000000003
!!!! Now the configuration has been applied !!!!
I-AM-ON-DUAL-STAGE-MODE(config-dual-stage)#
!!!! Nexus automatically run the rollback process after 30 seconds !!!!
I-AM-ON-DUAL-STAGE-MODE(config-dual-stage)# Confirm commit Timer expired, triggering rollback commit
dev-SW001-CORE(config-dual-stage)#
Configuration committed by rollback using Commit ID : 1000000004
!!!! the configuration is rolled back now !!!!
dev-SW001-CORE(config-dual-stage)#
领英推荐
Some other useful commands for verification
show configuration commit list
Displays details about the last 50 commit IDs, including user, connection, and timestamp.
show configuration
Shows the current session configuration (only supported in dual-stage mode). If a commit fails, the session configuration is cleared.
For detail please have a look on Cisco Nexus Config Guide
Building a secure cloud environment is crucial for any business today. AWS offers such powerful tools that make it easier to achieve robust security and scalability. Have you implemented any specific AWS security features that have worked well for your projects?