Apply route leaking and security filter with contracts concurrently?
I have this unique use case and I can not figure out how to make it work...Hope someone could share some lights. Maybe it is not possible...But anyway:
I have two ACI sites managed by MSO/NDO as multi-site. Site A has VRF1, EPG1 and BD1 besides other dozens site-local EPG/BD pairs; Site B has VRF2, EPG2 and BD2 beside other dozen site-local EPG/BD pairs. ACI fabric runs the default gateway for each local EPG/BD and each site uses vzAny...No EPG/BD multi-site L2 Stretch.
I have configured Inter-VRF route leaking using contract to make Site A EPG1/BD1 L3 communicate with Site B EPG2/BD2 via ISN. However there are these new requirements coming in:
Workloads under Site A EGP1/BD1 can only communicate bi-directionaly with workloads under Site B EPG2/BD2.
Workloads under Site A EPG1/BD1 can not communicate with workloads under other Site A EPG/BDs.
Workloads under Site A EPG1/BD1 can not be accessible by workloads under other Site A EPG/BDs.
I might be able to add Site A EGP1/BD1 into a different VRF in Site A tenant and leave all other local EPG/BD in the existing VRF to meet the requirements...But any possible way to still use contracts to accomplish the new requirements?
※この はじめての Intersight Workload Optimizer / How To "Community" サイトで公開させていただいている情報は、Intersight Workload Optimizer に関わるナレッジを共有させて頂くことを目的としております。なるべく情報の正確性には努めてはおりますが、本 Community サイトで公開させて頂いている情報に基づいておこなわれた構成その他あらゆる設定に関してシスコとして一切の責任を持つことはできませんので、必ず公式なドキュメント、ガ...
The 2021 IT Blog Awards, hosted by Cisco, is now open for submissions. Submit your blog, vlog or podcast by Friday, December 3.
To learn what's new in this year's competition or to gain insights into the judging considerations, check out ...
Data Center and Cloud Networking News
Cisco Nexus Dashboard Open Ecosystem with Splunk
End-to-End Flow State Validation with Nexus Dashboard Insights Connectivity Analysis
Cisco Q1 NPI Announcements for Data Center and Cloud Networking
We delivered a partner enablement training session in September 2021 to share the ACI upgrade Best Practices.
The slide deck is enclosed here for wider audience in the community, it provides more details in terms of the best practices, tools and co...