cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4562
Views
13
Helpful
4
Replies

Internal VLAN ACI (PI)

Zarga
Level 1
Level 1

Hello , 

Did Someone have a Logic Explanation , why  we use the PI Vlan (Internal Vlan) on ACI?   and What is the Role of PI Vlan ? 

i Know That the FD (Forwarding Vlan ) have always To be maped to an PI vlan , but the Question is Why ? and Why we need the PI Vlan ? 

 

Best regards 

Zarga 

4 Replies 4

Robert Burns
Cisco Employee
Cisco Employee

It comes down to separating the HW VLANs assigned/used by the switches ASICs, from the global ones used across the fabric for ACI policy & segmentation.  Keep in mind that ACI separates the logical model from physical, meaning we could assign the SAME EPG across any number of switches using a different Encap VLAN on the front panel ports.  To accomplish there needs to be a switch-local and ACI-global VLAN concept.  There's a bit more detail in these two articles , but that's the jist of it.  https://www.cisco.com/c/en/us/support/docs/switches/nexus-9336pq-aci-spine-switch/118930-technote-aci-00.html

https://www.dclessons.com/vlan-encapsulation-in-aci-deep-dive 

Robert 

TangoAlfa
Level 1
Level 1

VLAN Encapsulation in ACI

External VLAN: Used for External Communication and Integration

Internal VLAN: It is also called as Platform Independent Vlan whose scope is local to each leaf. 

 

ACI has no control how Platform VLAN is allocated to traffic going via leaf. APIC allocates PI VLAN per EPG, Per BD and these allocation is local to leaf and is different to each Leaf.

Cisco ACI fabric internally does not use VLANs as traditional switches but it translates externally connected VLANs to Flooding Domain, Bridge Domain and VXLANs. All of this is happening at the ingress to the fabric.

 

if you run the command "#sho  vlan extended" you can see encap VLAN(traditional VLAN) map to a random PI VLAN.

RedNectar
VIP
VIP

Hi @Zarga and anyone else reading this thread.

I've written a couple of other answers to other threads that may help readers of this thread.

This one I did today, and an earlier one that includes this video

Apologies for re-igniting a dead thread (which I've argued should not be possible) but this one does not have an accepted answer.

 

RedNectar aka Chris Welsh.
Forum Tips: 1. Paste images inline - don't attach. 2. Always mark helpful and correct answers, it helps others find what they need.

LearnWithSalman
Cisco Employee
Cisco Employee

Please take a look at my video article for a detailed explanation of ACI VLAN Types and VLAN Scope.

Review Cisco Networking for a $25 gift card

Save 25% on Day-2 Operations Add-On License