07-23-2020 10:07 AM
Hello, can some please help me to understand below questions.
While creating the subnet under Bridge domain we have three scopes
1> Private to VRF.
2> advertise externally.
3> shared between VRF.
A> My 1st question is if i select private to VRF then, will that subnet be advertised to externally or to other VRF.
B> My 2nd question is if i select advertise externally then, subnet will be advertised external and as well as private to VRF and to between the VRF?
C> if i select between VRF then that subnet will not be advertised to external and to private to VRF.
Please help to clear my doubt. Similar for L3 out subnet scops.
Regards
Deepak
Solved! Go to Solution.
08-12-2020 01:08 AM
Hi Deepak.
Private to VRF = This subnet will only be routed internal to the ACI fabric. This is to say it won't be advertised via any L3outs.
Advertise Externally = The opposite of Private. This means you want this subnet to participate in any associated L3outs.
Shared Between VRFs = This is used when you want to do route leaking between different VRFs
So the answers to your questions are:
A - No. It will only be reachable by any other BDs in that VRF
B- No. It will only be advertised via the L3outs in that same VRF, and reachable by any other BDs in that VRF
C- No. This box only sets this subnet to be eligible to be leaked to other VRFs inside ACI. This box can be used in combination with the other two options. It is not mutually exclusive.
08-12-2020 02:24 PM
Good answer @joezersk
This screen is so confusing Cisco modified it in V5. See if you can spot the difference...
See how they have removed the confusing Private to VRF option?
One of Cisco's better moves IMHO
08-12-2020 11:09 PM
Yeah, running 5.0.2 in my lab and I saw that too. I did not mention it as our OP is on an older version where all three still show. I agree, fewer exposed nerd knobs is usually a better experience.
08-12-2020 01:08 AM
Hi Deepak.
Private to VRF = This subnet will only be routed internal to the ACI fabric. This is to say it won't be advertised via any L3outs.
Advertise Externally = The opposite of Private. This means you want this subnet to participate in any associated L3outs.
Shared Between VRFs = This is used when you want to do route leaking between different VRFs
So the answers to your questions are:
A - No. It will only be reachable by any other BDs in that VRF
B- No. It will only be advertised via the L3outs in that same VRF, and reachable by any other BDs in that VRF
C- No. This box only sets this subnet to be eligible to be leaked to other VRFs inside ACI. This box can be used in combination with the other two options. It is not mutually exclusive.
08-12-2020 02:24 PM
Good answer @joezersk
This screen is so confusing Cisco modified it in V5. See if you can spot the difference...
See how they have removed the confusing Private to VRF option?
One of Cisco's better moves IMHO
08-12-2020 11:09 PM
Yeah, running 5.0.2 in my lab and I saw that too. I did not mention it as our OP is on an older version where all three still show. I agree, fewer exposed nerd knobs is usually a better experience.
10-13-2020 06:40 PM
Thanks Dear Joezersk & Rednectar to clear the doubt...
Regards
Deepak
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide