Hello, my googling skills may not be working correctly.
I am hearing from alot of NSX admins stating that ACI can not do micro-segmentation between host in the same network behind vDS. That is where NSX comes into play. Creating the segments inside NSX as the gateway for the traffic to transverse for both Physical and Virtual Machines. The Virtual Distributed Switch is the problem bypassing ACI contracts, when the L3 is on ACI. I thought I had seen this working in another environment but I am not finding anything about it.
Is ACI not able to micro-seg the vDS host traffic since acting as a switch? Is there any documentation to show how to create this or what is needed?