cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
409
Views
10
Helpful
4
Replies
Highlighted

Subnet Scope under Bridge domain IN ACI

Hello, can some please help me to understand below questions.

While creating the subnet under Bridge domain we have three scopes

1> Private to VRF.

2> advertise externally.

3> shared between VRF.

A> My 1st question is if i select private to VRF then, will that subnet be advertised to externally or to other VRF.

B> My 2nd question is if i select advertise externally then,  subnet will be advertised external and as well as private to VRF and to between the VRF?

C> if i select between VRF then that subnet will not be advertised to external and to private to VRF.

 

Please help to clear my doubt. Similar for L3 out subnet scops.

 

Regards

Deepak

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted

Yeah, running 5.0.2 in my lab and I saw that too.  I did not mention it as our OP is on an older version where all three still show. I agree, fewer exposed nerd knobs is usually a better experience. 

View solution in original post

4 REPLIES 4
Highlighted
Cisco Employee

Hi Deepak. 

Private to VRF = This subnet will only be routed internal to the ACI fabric.  This is to say it won't be advertised via any L3outs.

Advertise Externally = The opposite of Private.  This means you want this subnet to participate in any associated L3outs. 

Shared Between VRFs = This is used when you want to do route leaking between different VRFs

So the answers to your questions are:

A - No.  It will only be reachable by any other BDs in that VRF

B- No. It will only be advertised via the L3outs in that same VRF, and reachable by any other BDs in that VRF

C- No.  This box only sets this subnet to be eligible to be leaked to other VRFs inside ACI.  This box can be used in combination with the other two options.  It is not mutually exclusive.

Highlighted

Good answer @joezersk 

This screen is so confusing Cisco modified it in V5.  See if you can spot the difference...

image.png

See how they have removed the confusing Private to VRF option?

One of Cisco's better moves IMHO

 

RedNectar
aka Chris Welsh


Don't forget to mark answers as correct if it solves your problem. This helps others find the correct answer if they search for the same problem

Highlighted

Yeah, running 5.0.2 in my lab and I saw that too.  I did not mention it as our OP is on an older version where all three still show. I agree, fewer exposed nerd knobs is usually a better experience. 

View solution in original post

Highlighted

Thanks Dear Joezersk & Rednectar to clear the doubt...

 

 

Regards

Deepak

Content for Community-Ad