cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

3296
Views
40
Helpful
4
Replies
Beginner

Difference Between subnet under EPG and BD.

Hi 

 

Could anyone please let me know what is a difference between Subnets in EPG and Subnets in BD?

2 ACCEPTED SOLUTIONS

Accepted Solutions
Rising star

Re: Difference Between subnet under EPG and BD.

Hi Khansa,

 

[Edited to clear up ambiguity in #2 below and add #3]

 

You may find out all you need to know by reading my reply to this question, but let me re-iterate here anyway.

Subnets can be assigned to both BDs and EPGs.  Which is very confusing, but there is a subtle difference that doesn't really come into play until you need to configure contracts between VRFs or between Tenants.

 

If you haven't got into sharing contracts between VRFs or between Tenants, then this is all you probably need to know:

 

  1. If you want, you can merrily configure all your IPs on EPGs rather than BDs.  And in some ways, that more closely resembles a Network Centric Approach.
  2. If you ever need to provide a service to another VRF or another Tenant (apart from the common Tenant), you will NEED to add an IP Address to the EPG to specify which part of the subnet you wish to advertise to the consumer EPG, and mark that subnet as being Shared Between VRFs and that subnet will then get leaked into the Consumer's VRF.
  3. On the Consumer side, the subnet also has to be marked as being Shared Between VRFs so that the route can be leaked into the Provider's VRF.  This can be done on the Consumer's DB or on a Subnet EPG.

 

I hope this helps

 



Don't forget to mark answers as correct if it solves your problem. This helps others find the correct answer if they search for the same problem


RedNectar
aka Chris Welsh


Don't forget to mark answers as correct if it solves your problem. This helps others find the correct answer if they search for the same problem

Everyone's tags (2)
Highlighted
Cisco Employee

Re: Difference Between subnet under EPG and BD.

Hi,
Subnet under EPG should solely used in the context of VRF leaking (which works with contract) to apply the right classification and corresponding policy enforcement under the provider EPG. A new knob had been introduced in 2.3 to allow you to:
- Define a Subnet under the BD, and use it as the default gateway
- Configure carvings of this subnet under the EPGs and not having to change the default gateway on the servers
For example, you can have 10.10.10.1/24 under the BD as a default gateway, whilst deploying more specific classification under EPG, such as 10.10.10.5/30.

 

You can find additional info there: https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-737909.html#_Toc492605185

Hope this helps

Nicolas

Technical Marketing - Insieme BU

4 REPLIES 4
Contributor

Re: Difference Between subnet under EPG and BD.

Rising star

Re: Difference Between subnet under EPG and BD.

Hi Khansa,

 

[Edited to clear up ambiguity in #2 below and add #3]

 

You may find out all you need to know by reading my reply to this question, but let me re-iterate here anyway.

Subnets can be assigned to both BDs and EPGs.  Which is very confusing, but there is a subtle difference that doesn't really come into play until you need to configure contracts between VRFs or between Tenants.

 

If you haven't got into sharing contracts between VRFs or between Tenants, then this is all you probably need to know:

 

  1. If you want, you can merrily configure all your IPs on EPGs rather than BDs.  And in some ways, that more closely resembles a Network Centric Approach.
  2. If you ever need to provide a service to another VRF or another Tenant (apart from the common Tenant), you will NEED to add an IP Address to the EPG to specify which part of the subnet you wish to advertise to the consumer EPG, and mark that subnet as being Shared Between VRFs and that subnet will then get leaked into the Consumer's VRF.
  3. On the Consumer side, the subnet also has to be marked as being Shared Between VRFs so that the route can be leaked into the Provider's VRF.  This can be done on the Consumer's DB or on a Subnet EPG.

 

I hope this helps

 



Don't forget to mark answers as correct if it solves your problem. This helps others find the correct answer if they search for the same problem


RedNectar
aka Chris Welsh


Don't forget to mark answers as correct if it solves your problem. This helps others find the correct answer if they search for the same problem

Everyone's tags (2)
Beginner

Re: Difference Between subnet under EPG and BD.

Thank A lot. It helped me put things into perspective
Highlighted
Cisco Employee

Re: Difference Between subnet under EPG and BD.

Hi,
Subnet under EPG should solely used in the context of VRF leaking (which works with contract) to apply the right classification and corresponding policy enforcement under the provider EPG. A new knob had been introduced in 2.3 to allow you to:
- Define a Subnet under the BD, and use it as the default gateway
- Configure carvings of this subnet under the EPGs and not having to change the default gateway on the servers
For example, you can have 10.10.10.1/24 under the BD as a default gateway, whilst deploying more specific classification under EPG, such as 10.10.10.5/30.

 

You can find additional info there: https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-737909.html#_Toc492605185

Hope this helps

Nicolas

Technical Marketing - Insieme BU

CreatePlease to create content
Content for Community-Ad
August's Community Spotlight Awards