Aruba recommends setting up the management network on a VRF.

interface mgmt
no shutdown
ip static 10.251.1.4/24
default 10.251.1.254
exit

session-timeout 180
ssh server vrf mgmt
https-server vrf mgmt
https-server rest access-mode read-write
exit

 
session-timeout 0 
user admin password

ip dns server-address 8.8.8.8 vrf mgmt
ntp server 10.251.1.15 iburst
ntp vrf mgmt
ntp enable
ntp authentication
ntp authentication-key 1 sha1 password trusted
clock timezone us/eastern
end

write memory
copy run checkpoint initial

Configuring VSX is a bit more involved than VSF.

General Components:

• ISL (Interswitch Link)
• Keep Alive Mechanism
• Active-Forwarding
• Active-Gateway
• Linkup-Delay
• VSX LAG

On both members…make sure the two members are running the same port speeds:

system interface-group 4 speed 25g

sh int brief

Configure new LAG interface 10, add it to port 1/1/46

int lag 10

no routing

no shutdown

lacp mode active

lacp rate fast

vlan trunk allowed all

interface 1/1/46

no shutdown 

lag 10

Configure VSX on LAG 10

On Primary

sh lacp interfaces
config t
vsx
system-mac 00:00:00:AB:CD:01
inter-switch-link lag 10
role primary

On Secondary

sh lacp interfaces
 config t
 vsx
 system-mac 00:00:00:AB:CD:01
 inter-switch-link lag 10
 role secondary

On primary, check and see VSX members are peered and sync’d

show vsx brief

sh vsx status

sh vsx configuration inter-switch-link

SH VSX configuration inter-switch-link vsx-peer

show vsx config-consistency

For the keep alive, we’ll be using a VRF as part of the configuration. Keepalive will be configured on interface 1/1/47

On Primary

conf t
vrf keepalive
int 1/1/47
vrf attach keepalive
ip address 10.1.18.41/30
no shutdown
end
vsx
keepalive peer 10.1.18.42 source 10.1.18.41 vrf keepalive

On Secondary

conf t
vrf keepalive
int 1/1/47
vrf attach keepalive
ip address 10.1.18.42/30
no shutdown
end

vsx
keepalive peer 10.1.18.41 source 10.1.18.42 vrf keepalive

Next, configure the Active Gateway for vlan interface 14

On Primary

vlan 14
exit

int vlan 14
ip add 10.1.14.2/24
l3-counters
active-gateway ip 10.1.14.1 mac 00:00:00:00:10:FE
no shutdown
end

On Secondary

vlan 14
exit

int vlan 14
ip add 10.1.14.3/24
l3-counters
active-gateway ip 10.1.14.1 mac 00:00:00:00:10:FE
no shutdown

Last, configure LAG 12 from VSX Pair to VSF Stack or a switch via LACP. Tags VLAN 14

On Primary

int lag 12 multi-chassis
no routing
no shutdown
description To-VSF
vlan trunk allow all
lacp mode active
lacp rate fast
int 1/1/1-1/1/2
lag 12
no shutdown
end

On Secondary

int lag 12 multi-chassis
no routing
no shutdown
description To-VSF
vlan trunk allow all
lacp mode active
lacp rate fast
int 1/1/1-1/1/2
lag 12
no shutdown
end

Please note, Aruba AOS-CX switches can only establish VSF links via SFP ports. I assume the user knows which commands require configuration mode.

First verify that the switches are connected

sh int brief

sh lldp neighbor

On the primary member, set the VSF configuration. Port 1/1/28 on primary is connected to port 1/1/28 on the secondary.

vsf member 1
link 1 1/1/28

On the secondary member, set the following:

vsf member 1
link 1 1/1/28
exit
vsf renumber-to 2

The secondary member should reboot and attempt to form a VSF stack.

On the primary, renumber the second member after it joins the stack:

vsf secondary-member 2

On the primary, you can status with the following commands:

sh vsf
sh int brief
sh vsf top
sh vsf member 2