Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3035
Views
11
Helpful
4
Replies

Subnet Scope under Bridge domain IN ACI

Go to solution
deepak21bhandari
Level 1
Level 1

‎07-23-2020 10:07 AM

Hello, can some please help me to understand below questions.

While creating the subnet under Bridge domain we have three scopes

1> Private to VRF.

2> advertise externally.

3> shared between VRF.

A> My 1st question is if i select private to VRF then, will that subnet be advertised to externally or to other VRF.

B> My 2nd question is if i select advertise externally then,  subnet will be advertised external and as well as private to VRF and to between the VRF?

C> if i select between VRF then that subnet will not be advertised to external and to private to VRF.

 

Please help to clear my doubt. Similar for L3 out subnet scops.

 

Regards

Deepak

Labels:
0 Helpful
3 Accepted Solutions

Accepted Solutions

Go to solution
joezersk
Cisco Employee
Cisco Employee

‎08-12-2020 01:08 AM

Hi Deepak. 

Private to VRF = This subnet will only be routed internal to the ACI fabric.  This is to say it won't be advertised via any L3outs.

Advertise Externally = The opposite of Private.  This means you want this subnet to participate in any associated L3outs. 

Shared Between VRFs = This is used when you want to do route leaking between different VRFs

So the answers to your questions are:

A - No.  It will only be reachable by any other BDs in that VRF

B- No. It will only be advertised via the L3outs in that same VRF, and reachable by any other BDs in that VRF

C- No.  This box only sets this subnet to be eligible to be leaked to other VRFs inside ACI.  This box can be used in combination with the other two options.  It is not mutually exclusive.

View solution in original post

0 Helpful

Go to solution
RedNectar
VIP
VIP
In response to joezersk

‎08-12-2020 02:24 PM

Good answer @joezersk 

This screen is so confusing Cisco modified it in V5.  See if you can spot the difference...

image.png

See how they have removed the confusing Private to VRF option?

One of Cisco's better moves IMHO

 

RedNectar aka Chris Welsh.
Forum Tips: 1. Paste images inline - don't attach. 2. Always mark helpful and correct answers, it helps others find what they need.

View solution in original post

Go to solution
joezersk
Cisco Employee
Cisco Employee
In response to RedNectar

‎08-12-2020 11:09 PM

Yeah, running 5.0.2 in my lab and I saw that too.  I did not mention it as our OP is on an older version where all three still show. I agree, fewer exposed nerd knobs is usually a better experience. 

View solution in original post

4 Replies 4

Go to solution
joezersk
Cisco Employee
Cisco Employee

‎08-12-2020 01:08 AM

Hi Deepak. 

Private to VRF = This subnet will only be routed internal to the ACI fabric.  This is to say it won't be advertised via any L3outs.

Advertise Externally = The opposite of Private.  This means you want this subnet to participate in any associated L3outs. 

Shared Between VRFs = This is used when you want to do route leaking between different VRFs

So the answers to your questions are:

A - No.  It will only be reachable by any other BDs in that VRF

B- No. It will only be advertised via the L3outs in that same VRF, and reachable by any other BDs in that VRF

C- No.  This box only sets this subnet to be eligible to be leaked to other VRFs inside ACI.  This box can be used in combination with the other two options.  It is not mutually exclusive.

0 Helpful

Go to solution
RedNectar
VIP
VIP
In response to joezersk

‎08-12-2020 02:24 PM

Good answer @joezersk 

This screen is so confusing Cisco modified it in V5.  See if you can spot the difference...

image.png

See how they have removed the confusing Private to VRF option?

One of Cisco's better moves IMHO

 

RedNectar aka Chris Welsh.
Forum Tips: 1. Paste images inline - don't attach. 2. Always mark helpful and correct answers, it helps others find what they need.

Go to solution
joezersk
Cisco Employee
Cisco Employee
In response to RedNectar

‎08-12-2020 11:09 PM

Yeah, running 5.0.2 in my lab and I saw that too.  I did not mention it as our OP is on an older version where all three still show. I agree, fewer exposed nerd knobs is usually a better experience. 

Go to solution
deepak21bhandari
Level 1
Level 1
In response to joezersk

‎10-13-2020 06:40 PM

Thanks Dear Joezersk & Rednectar to clear the doubt...

 

 

Regards

Deepak

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents

Save 25% on Day-2 Operations Add-On License