Multiple inbaund ip addesses on cisco ACI (SNMP, NTP, Syslog) ??

goranje · ‎07-09-2020

Hi all,

We are implementing Cisco ACI to the network, we are on management, monitoring part and i have a few concerns/questions.

We are configuring NTP, Syslog, SNMP, Inband management, but the needs according current network is that we need different IP address on aci devices (APICs and switches) for each of the services.

We need:

1st IP pool for NTP connected to NTP network (by L3 out)

2nd IP pool for SNMP + syslog connected to Monitoring network (by different L3out)

3rd IP pool for inbaund management connected to management network.

As I understood for those services (snmp, Syslog, Inband management, NTP) the configuration on ACI site should be done in mgmt tenent.

My question is can i create multiple BD in vrf ibn in tenant mgmt and connect each BD with separate In-Bound -Management-EPG?

And create multiple "node managemnt addess" pools. Will ip address from all pools assigned to devices? Will they be on separate loopback or something else ?

Or, if some one had experience with this , can share with us any other idea how to provide multiple Ip address on ACI devices for different mgmt and monitoring services?

Any link with documentation that can explain our needs is welcom.

Best regards,

Goran

joezersk · ‎08-12-2020

This is not possible. I even tried it in my own lab. I suspect that even if you could hack your way around it, you'd have routing issues, perhaps too many default gateways across all your interfaces (there is no way to currently add routes to the routing table for mgmt interfaces in APIC). I wonder how would the given processes know from which IP to source from (like NTP, SNMP, etc). It all sounds very messy. I am a fan of simple anywhere I can get it. Sorry the news isn't better.