Hi Daps. Ok, I don't have the full picture of your setup, but I have some thoughts as to why your servers cannot ping. Without getting too philosophical, your servers are actually NOT in the same EPG.
When using an L2Out, you are effectively extending your VLAN from your ACI EPG, to the External EPG that lives in the outside world. Confused? Look at it like this....ACI sees the world as a series of EPGs. Everything is an endpoint and every endpoint must belong to an EPG...even for things that live outside of ACI. So conceptually ACI views "the world outside" as an "external EPG" that it does not actually own or manage, but sees as an EPG nonetheless.
We also know that in ACI, for EPGs to talk, we need a contract. I suspect in your setup, you do not have a contract on the L2 Outs. You have two choices here, and I will even dare to risk telling you the one I would prefer.
1. You can add contracts to both L2Outs that allow the protocols you want.
2. You can choose not to use L2Outs at all (and remove that config) and use what is called a "Static Binding" or in the UI called "Static Ports". You find this under the EPG itself. You are effectively telling ACI "Hey, in this EPG, there is a VLAN encap you should tag on this trunk port that leads to my legacy switch".
I prefer static bindings/ports myself.
To close, you might also wonder what is the difference between L2Out and Static Port? L2Out requires a contract, and the static port does not. Your choice.
Hi,There was a leaf Switch live in our fabric which was having some issues . We got an RMA for it and replaced the new leaf Switch with the same Node ID. After replacement we are unable to SSH the new leaf Switch from APIC .getting some error for RSA keys...
Hi, I am trying to create multiple subnets in one bridge domain using postman for ACI automation. I want to know if there is a document specific to the automation mentioned above. Can someone help me with this please. I am using global variables for ...
Bridge the gap between infrastructure and applications with Cisco Hyperflex Application Platform and Intersight Workload Optimizer.
Hyperflex Application Platform (HXAP)
See Hyperflex in Action
Cisco listens to the business needs of cu...
I have ip flapping issue in cisco ACI environmentas the topology:I found that when icmp reply from 220.127.116.11 to 18.104.22.168,these icmp reply packets will be sent to SW13 and SW14 at the same time,the icmp reply packets which sent to SW13 with S-I...
There is a Global ACI option (SYSTEM > SYSTEM SETTINGS >> Fabric Wide Setting | Enforce Domain Validation) that forces ACI to check that an EPG is linked to a Domain. The Cisco Application Centric Infrastructure Design Guide White Paper ...