Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1808
Views
15
Helpful
2
Replies

Physical domains vs External bridge domains.

MarkoMilosavljevic4884
Level 1
Level 1

‎10-04-2021 01:25 AM

Hi,

 

In APIC -> Access Policies, there are two thing that I don't see the different between them ( Physical domains and External bridge domains).
What is the purpose & differences of each one, what is the equal configure in IOS for them ?

 

 

 

Labels:
Preview file
36 KB
2 Replies 2

Robert Burns
Cisco Employee
Cisco Employee

‎10-04-2021 04:47 AM

Domains are a necessary link in the ACI policy structure that provide RBAC between Access Policies (mainly VLANs) and Logical Policies (Tenant).  Physical Domains are used for "EPG static port paths", and External Bridge Domains are used for "External Bridged Networks".  In my opinion there's little need to use External Bridged Networks and you should focus on Physical Domains & Static paths when connecting baremetal workloads to ACI.

Robert

mvknl
Level 1
Level 1

‎10-06-2021 07:43 AM

An External Bridged Domain in ACI is used to create an L2out. L2outs are rarely used. You would use a L2out when you have a network which is routed outside of the fabric, but L2 attached within the fabric and you want to apply contracts on them.

 

Usually you can't apply contracts on L2 only bridge domains, but with L2outs that is possible. I have never seen this implemented anywhere, but there must be some ACI deployments out there using this as it wouldn't be in ACI otherwise.

Customers Also Viewed These Support Documents

Save 25% on Day-2 Operations Add-On License