Hi Tom, the

ksherwood · ‎10-15-2016

Hi, a quick question:

Once a layer two out connection has been made with the required elements including the EPG, when you set up a leaf port for a test node connection, does this EPG need to be a new one which only tags the single vlan required ?

ie the L2out EPG contains all vlans in brownfield and the test EPG only contains one of those vlans in order to PING back.

Tomas de Leon · ‎10-16-2016

Kevin,

I responded to you reply in your question which Daniel originally answered.

Let say that have two vlans 80-81 that you want to trunk to an external switch.
1/13 is your Trunk connection to external switch
1/14 is your laptop connection which is an "access" port which is untagged for VLAN80.
1/15 is your server connection which is an "access" port which is untagged for VLAN81.

Your external switch has the configuration:

interface GigabitEthernet0/13
description L2 connection RTP2 Leaf1 Port13
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 80,81
switchport mode trunk
!
interface Vlan80
ip address 192.2.80.254 255.255.255.0
!
interface Vlan81
ip address 192.2.81.254 255.255.255.0
!

EPG Configuration:

EPG Net80-epg-l2ext
deadbeef-vlan80/vlan80-bd1
Domains (deadbeef-l2extA-dom, deadbeef-l2extB-dom)
Static Ports
Pod-1/Node-211/eth1/13 vlan-80 Immediate Trunk
Pod-1/Node-211/eth1/14 vlan-80 Immediate Access (Untagged)

EPG Net81-epg-l2ext
deadbeef-vlan81/vlan81-bd2
Domains (deadbeef-l2extA-dom, deadbeef-l2extB-dom)
Static Ports
Pod-1/Node-211/eth1/13 vlan-81 Immediate Trunk
Pod-1/Node-211/eth1/15 vlan-81 Immediate Access (Untagged)

If you use the static path method, think of it as an EPG per VLAN.

All of this is made with the assumptions that you have the Access policies which include the AEEP, VLAN pools, Domains, interface policies, etc... are already setup.

I hope this helps!

T.

ksherwood · ‎10-16-2016

Thanks Tomas, so I'll include my L2Out procedure again and if I get your drift I need an external bridge domain for each VLAN I am migrating over. Could you please edit this accordingly and then i know exactly where I stand. Let's say for this exercise I need vlans 80 and 81.

Thanks.

Tomas de Leon · ‎10-17-2016

Kevin,

I would suggest configuring the entire port personality with AAEP, VLAN Pools, Domains, Switch & Interface profiles first using the "Quick Start" wizard for whatever interface type. Once that is done. Then, you can walk thru your script to get things working.

T.

ksherwood · ‎10-19-2016

Hi Tom,
the VLAN pool is a single (global) pool right ?

So that is always full of my Brownfield vlans I want to use in the ACI world.

Kevin.

Tomas de Leon · ‎10-20-2016

The VLAN Pool will typically associated with a Domain & AAEP so you may have multiple pools with the same VLANs are other pools. Or you may have a single VLAN pool with is associated with multiple domains.

It just depends on how you want to configure them.

T.

ksherwood · ‎10-23-2016

I'm just not sure what initial domains I need to "extend the EPG out"

Do I need an external bridge domain for each brownfield vlan that I want the ACI to co-exist with ?

ext-L2-80     +      ext-L2-81
bd-80           +      bd-81
epg-80         +      epg-81
vlan-80        +      vlan-81

ACI test node