cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
460
Views
0
Helpful
1
Replies
Highlighted
Beginner

ACI Multipod multiple L3out with Firewall

Hi,

 

we have plan to migrate legacy Server Farm to ACI Multipod, 

legacy design have transparent firewall between Server Farm Switch and Core Switch, All Firewall configured as transparent and Standalone, (all active without cluster) route manipulate by ospf cost.

each DC and DR has 2 standalone firewall between Server Farm and Core.

below is design that we will propose (without change firewall configuration).

Untitled.png

 

my questions are :

1. is it possible to have multiple L3out like this ?

2. can we use L3out ospf cost, and local preference, etc to manipulate route to prevent asymmetric traffic?

3. or any other options with this case ?

 

thank you,

1 REPLY 1
Highlighted
Enthusiast

Hello , 

 

You can have multiple L3outs from each pod . Can use cost feature of ospf to change routing paths . Basically treat whole ACI fabric as one big L3 Switch from traditional routing standpoint .