When extending the BD via L2 out. you are associating multiple external VLANs to the one BD. you are applying policy on a per -vlan or per-l2-out basis. On the other hand, when extending the EPG out, you are associating 1 or more VLANs to a particular EPG where you are somewhat limited in how granular policy can be.
For example, if you needed to bring in external VLAN 10, 20, and 30 and you made an L2 out for each of those three VLANs, yes they would each be tied to the same BD but you can apply policy to each one individually. If I'm not mistaken you could re-use the same node profile and interface profile for each individual L2 out referencing a different VLAN. *With this model, endpoints from the external network are learned in this external EPG and require policy to communicate with any other endpoint attached to the fabric. *
Whereas, if you extend the EPG you can have EPGA with vlan 10 OR 20 OR 30 static paths on the same leaf/interface but not all three(to be technical, you can have 1 but no more than that). You would need to use a different interface or a different EPG to use the same interface. *With this model, internal endpoints (attached to the fabric and learned in EPGA) will be able to forward without restriction to the external endpoints learned on the VLAN associated to the EPG. *
ACI currently has a very tight correlation between an EPG and a VLAN. Please reference this white paper on external networks with ACI:
http://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c07-732033.html#_Toc395143568
hope this helps. have a nice day!
