Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1222
Views
0
Helpful
6
Replies

In band management access

AirBorn
Level 1
Level 1

‎11-22-2020 05:43 AM

Hi,

 

Is it possible to access in band management EPG from an EPG on a user tanant ?

 

Regards

 

Labels:
0 Helpful
6 Replies 6

Robert Burns
Cisco Employee
Cisco Employee

‎11-22-2020 06:00 AM

Yes.  It's the same as any other EPG to EPG.  

 

Robert

0 Helpful

AirBorn
Level 1
Level 1
In response to Robert Burns

‎11-22-2020 06:18 AM

On cisco documentation, for inter Tenant communication subnets have to be shared. is this apply to inband management subnet as well ? . If yes,  how to make this subnet shared ?

 

Regards 

0 Helpful

Robert Burns
Cisco Employee
Cisco Employee

‎11-22-2020 10:06 AM

See why whitepaper here: https://www.cisco.com/c/en/us/support/docs/cloud-systems-management/application-policy-infrastructure-controller-apic/213462-inter-vrf-communication.html
It's a little dated (from a screenshot perspective) but the theory is the same for current versions.

Robert

0 Helpful

AirBorn
Level 1
Level 1
In response to Robert Burns

‎11-22-2020 10:52 AM

The document is about 2 user tenant, but mgmt tenant configuration is not exactly the same

I diden't found where and how to share inband subnet in mgmt tenany

0 Helpful

RedNectar
VIP
VIP

‎11-22-2020 12:32 PM - edited ‎11-22-2020 12:32 PM

Hi @AirBorn ,

Did you try a Google seatch for Cisco ACI Inband Mangement Tutorial?  If you do, you will likely come across a series of 3 articles written in 2016 - it's the first article that you want to read - Configuring In-Band Management for the APIC on Cisco ACI (Part #1-via an EPG)

However, for your case, there are a couple of variations

  1. You will need to configure the scope of the contract in the mgmt tenant (inband.MgmtServices_Ct) as Global (not VRF)
  2. You will need to export the contract to your tenant
  3. When you consume the contract in your tenant, use the Consumed Contract Interface construction.
  4. In your consuming tenant, make sure the IP address of the BD your EPG uses is Shared between VRFs
  5. NOTE: you will still need to create an Application Profile and EPG in the mgmt tenant, just so you can create the subnet on that EPG that is also  Shared between VRFs 

I hope this helps.

Don't forget to mark answers as correct if it solves your problem. This helps others find the correct answer if they search for the same problem.

RedNectar aka Chris Welsh.
Forum Tips: 1. Paste images inline - don't attach. 2. Always mark helpful and correct answers, it helps others find what they need.
0 Helpful

AirBorn
Level 1
Level 1
In response to RedNectar

‎11-23-2020 10:26 PM

Hi Rednectar,

 

So if my understanding is correct

1/ On the tenant mgmt i will create another EPG, say M-EPG,  under an application profile in addition to inband management EPG (under Node Management EPGs)

 

2/ The mnagement IP subnet will be associated with M-EPG's BD

 

3/ The contract will be between user EPG (on user tenant) and M-EPG

 

4/All the initial configuration of the fabric will be done from OOB management port of the APICs. obviousely the subnet of those OOB ports will be different than the inband management subnet

 

Is all that correct ?

Regards

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents

Save 25% on Day-2 Operations Add-On License