Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1254
Views
0
Helpful
3
Replies

Traffic distribution Intelligent over COMMON_L3_Out

Go to solution
NDP
Level 1
Level 1

‎11-16-2017 03:47 AM - edited ‎03-01-2019 05:22 AM

Could someone please clarify on the following

(i) L3Out in COMMON Tenant

(ii) two VRFs in Tenant UAT ( VRF A, BD A_UAT--> 10.0.0.0/24 VRF B,BD B_UAT -->10.0.1.0/24)

(iii) two VRFs in Tenant PROD ( VRF C BD C_PROD-->10.0.3.0/24, VRF D BD D_PROD-->10.0.4.0/24)

 

All four bridge domains are associated with the L3Out created in COMMON Tenant. when external network tried to talk to anyone of the networks specified above, they would send traffic to next hop IP of ACI which is Fabric IP of COMMONL3Out. 

 

how does ACI fabric now forward the traffic to proper VRF ( if destination in the received packet is 10.0.0.0/24, how does it know that packet should go to VRF A ).

 

Thank you in advance

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
gmonroy
Cisco Employee
Cisco Employee

‎11-16-2017 09:31 AM

NDP,

    Assuming your COMMON_L3_OUT is within its own VRF, you would have to use some route leaking configuration within ACI to get across VRFs.

 

Essentially what will end up happening is that each respective VRF can have the routes learned from your L3out that may point to the overlay as it's next hop (to get from VRF A to VRF COMMON's L3out, for instance).

 

In VRF COMMON, you will have routes from each of your BD Subnets pointing into the Overlay so that they could eventually get back to their VRF where the subnet is originating. 

 

Here is a (slightly older) document that outlines one method of route leaking and some verification output:

https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/application-policy-infrastructure-controller-apic/200242-Configuring-Inter-Context-Communication.html

 

-Gabriel

View solution in original post

0 Helpful
3 Replies 3

Go to solution
gmonroy
Cisco Employee
Cisco Employee

‎11-16-2017 09:31 AM

NDP,

    Assuming your COMMON_L3_OUT is within its own VRF, you would have to use some route leaking configuration within ACI to get across VRFs.

 

Essentially what will end up happening is that each respective VRF can have the routes learned from your L3out that may point to the overlay as it's next hop (to get from VRF A to VRF COMMON's L3out, for instance).

 

In VRF COMMON, you will have routes from each of your BD Subnets pointing into the Overlay so that they could eventually get back to their VRF where the subnet is originating. 

 

Here is a (slightly older) document that outlines one method of route leaking and some verification output:

https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/application-policy-infrastructure-controller-apic/200242-Configuring-Inter-Context-Communication.html

 

-Gabriel

0 Helpful

Go to solution
Rick1776
Level 5
Level 5

‎11-16-2017 02:23 PM

I really like this picture as well to explain.

 

 

Shared L3out.png

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card

Save 25% on Day-2 Operations Add-On License