cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Cisco Community Designated VIP Class of 2020

231
Views
5
Helpful
2
Replies
Beginner

PBR service graph across tenants

Hi,

 

Is it possible to do policy based redirect service graph between two different tenants (without using the common tenant)? 

For example, let's say we have an EPG in the production tenant that must be accessible from another EPG in the non-production tenant through the firewall using PBR. Because the EPG are in different tenants, you cannot select one of the EPGs when applying the service graph to a contract. 

 

Regards.

Everyone's tags (3)
1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Beginner

Re: PBR service graph across tenants

If you L4-L7 is in Pord tenant, you just heave to create contract, add L4-7 to the subject(s), attach provider side of contact . to EPG in prod tenant, export contact to nonprod tenant and add contact interface to clients' EPG. 

PBR wil be used in L4-7 config to sent traffic  to your the L4-7 device, In case of FW you need PBR on both sides. 

View solution in original post

2 REPLIES 2
Highlighted
Beginner

Re: PBR service graph across tenants

If you L4-L7 is in Pord tenant, you just heave to create contract, add L4-7 to the subject(s), attach provider side of contact . to EPG in prod tenant, export contact to nonprod tenant and add contact interface to clients' EPG. 

PBR wil be used in L4-7 config to sent traffic  to your the L4-7 device, In case of FW you need PBR on both sides. 

View solution in original post

Beginner

Re: PBR service graph across tenants

Hi,

 

Thanks, I missed that part of the PBR white paper documentation. I'll test it and let you know.

CreatePlease to create content
Content for Community-Ad
FusionCharts will render here