https://community.cisco.com/t5/application-centric-infrastructure/aci-fabric-to-legacy-fabric-l2out/m-p/4832164#M13993 <P>I think&nbsp;<a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/320466">@Robert Burns</a>&nbsp;must have read <A href="https://community.cisco.com/t5/application-centric-infrastructure/aci-vlan-pool-aaep-and-domain-best-practises/m-p/4756185/highlight/true#M13440" target="_blank" rel="noopener">this</A>&nbsp;or <A href="https://community.cisco.com/t5/application-centric-infrastructure/aci-physical-domain-and-l2out-domain/m-p/4164371/highlight/true#M9286" target="_blank" rel="noopener">this</A>&nbsp;but my favourite is the one that pictorially explains Robert's point about using EPG static ports (aka L2 extension) in&nbsp;<A href="https://community.cisco.com/t5/application-centric-infrastructure/aci-l2out-vs-l2extension/m-p/4043695/highlight/true#M7945" target="_blank" rel="noopener">this</A>&nbsp;post.</P> Tue, 09 May 2023 20:42:35 GMT RedNectar 2023-05-09T20:42:35Z https://community.cisco.com/t5/application-centric-infrastructure/aci-fabric-to-legacy-fabric-l2out/m-p/4831856#M13986 <P>Hello, In order to create an l2out for my legacy fabric, do I need to create an l2out for every vlan I want to access in the legacy?</P> Tue, 09 May 2023 12:19:25 GMT https://community.cisco.com/t5/application-centric-infrastructure/aci-fabric-to-legacy-fabric-l2out/m-p/4831856#M13986 roysegev 2023-05-09T12:19:25Z https://community.cisco.com/t5/application-centric-infrastructure/aci-fabric-to-legacy-fabric-l2out/m-p/4831867#M13987 <P>Before&nbsp;<a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/320756">@RedNectar</a>&nbsp;blasts you, don't use "L2outs" (aka External Bridged Networks) <LI-EMOJI id="lia_slightly-smiling-face" title=":slightly_smiling_face:"></LI-EMOJI><BR />It's better to use EPG Static Ports (Static Path bindings) instead which over more granular control over the respective VLANs.&nbsp; L2Outs extend the broadcast domain for an entire range of VLANs, but it becomes an all-or-none extension.&nbsp; With EPG static ports, you can extend &amp; remove individual VLANs much easier, and control access on a per VLAN basis (think ACLs).&nbsp;<BR /><BR />With this in mind, you typically would create an AEP, Physical Domain and VLAN Pool for representative of the Legacy enviornments and configure your Interfaces connecting from ACI to that environment with this AEP.&nbsp; From there, you can then add/remove EPG static paths within your tenant by adding the Physical domain to your EPGs, and adding the Static Port Entry.&nbsp; Depending on how many VLANs/EPGs you have, could be tedious, but nothing a little PostMan scripting/API magic can't make quick work of.&nbsp;&nbsp;<BR /><SPAN><BR />Robert</SPAN></P> Tue, 09 May 2023 12:33:08 GMT https://community.cisco.com/t5/application-centric-infrastructure/aci-fabric-to-legacy-fabric-l2out/m-p/4831867#M13987 Robert Burns 2023-05-09T12:33:08Z https://community.cisco.com/t5/application-centric-infrastructure/aci-fabric-to-legacy-fabric-l2out/m-p/4832164#M13993 <P>I think&nbsp;<a href="https://community.cisco.com/t5/user/viewprofilepage/user-id/320466">@Robert Burns</a>&nbsp;must have read <A href="https://community.cisco.com/t5/application-centric-infrastructure/aci-vlan-pool-aaep-and-domain-best-practises/m-p/4756185/highlight/true#M13440" target="_blank" rel="noopener">this</A>&nbsp;or <A href="https://community.cisco.com/t5/application-centric-infrastructure/aci-physical-domain-and-l2out-domain/m-p/4164371/highlight/true#M9286" target="_blank" rel="noopener">this</A>&nbsp;but my favourite is the one that pictorially explains Robert's point about using EPG static ports (aka L2 extension) in&nbsp;<A href="https://community.cisco.com/t5/application-centric-infrastructure/aci-l2out-vs-l2extension/m-p/4043695/highlight/true#M7945" target="_blank" rel="noopener">this</A>&nbsp;post.</P> Tue, 09 May 2023 20:42:35 GMT https://community.cisco.com/t5/application-centric-infrastructure/aci-fabric-to-legacy-fabric-l2out/m-p/4832164#M13993 RedNectar 2023-05-09T20:42:35Z