Internet and MPLS connection to ACI

abdelrhman512 · ‎06-16-2025

Currently redesigning my DC, need to terminate 2* internet links to one border leaf and another 4 MPLS links to another boder leaf, in order to get benefit for L4L7 service insertion (PBR) of ACI for east west and nrth south traffic using 2 cluster FW.

Also have another 2 MPLS links B2B to anbother entitiy, and planning to terminate it also in ACI

is it recommended ? or should i terminate the internet links and MPLS links to the FW as legacy environment ?

AshSe · ‎06-16-2025

Hello @abdelrhman512

Could you please draw and share your proposed topology diagram here for better understanding.

Ash

abdelrhman512 · ‎06-17-2025

The attached topology contains 4 MPLS links
2 P2P link

abdelrhman512 · ‎06-17-2025

The attached topology contains 4 MPLS links
2 P2P link

gesteira · ‎06-22-2025

Hello abdelrhman512

Yes, you can do, you can establish l3out connection between your l3 links and perform Service Graph pbr as design and send to the firewall to perform inspection or analyze the traffic.

https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739971.html#Deploymentoptions

CCIE DC #69064